Vulmap – Online Local Vulnerability Scanners Project

Vulmap is an open source online local vulnerability scanner project. It consists of online local vulnerability scanning programs for Windows and Linux operating systems. These scripts can be used for defensive and offensive purposes. It is possible to make vulnerability assessments using these scripts. Also they can be used for privilege escalation by pentesters/red teamers.

Vulmap - Online Local Vulnerability Scanners Project
Vulmap – Online Local Vulnerability Scanners Project

Some of the functionality and features for this tool is to scan vulnerabilities on localhost, see related exploits and download them. Scripts basically, scan localhost to gather installed software information and ask api.

If there are any vulnerabilities and exploits related with installed software. If vulnerabilities exist the tool will give CVE ID, risk score, vulnerability’s detail link, if exists related exploits and exploit titles. Exploits can be downloaded using this tool.

Main idea behind this tool is getting real-time vulnerability data from Vulmon instead of relying of a local vulnerability database. Even the most recent vulnerabilities can be detected with this approach. Also its exploit download feature aids privilege escalation processes. Pentesters and red teamers can download exploits from Exploit DB from command prompt. To use this feature only thing needed is id of exploits.

You can read more and download this tool over here:

Notify of
Inline Feedbacks
View all comments