A client-server application for comprehensive CVE analysis, exploit detection and vulnerability assessment. The system provides a modern web interface with powerful features to aggregate data from multiple trusted sources, helping security professionals evaluate risks, detect available exploits and determine patching priorities through detailed analysis and reporting capabilities.
Installation Guide β’ Features β’ Examples β’ Roadmap
Click to expand
Exploit Seek is a comprehensive client-server application designed to analyze CVE vulnerabilities and detect available exploits. The system features an intuitive web interface with bilingual support, customizable themes, and real-time analysis tracking. It collects and processes data from multiple trusted sources, including exploit databases, security research repositories, and vulnerability intelligence platforms, helping security professionals assess exploitation risks, identify public exploits, and generate detailed analytical reports.
- Dark/Light theme support for comfortable work at any time
- Bilingual interface (English/Russian)
- Real-time analysis progress tracking
- File history with quick access to previous reports
- User-friendly settings management:
- Server configuration
- API keys management
- Language selection
- Theme preferences
- Secure authentication system
- Comprehensive vulnerability assessment using CVSS scoring system
- Exploitation probability evaluation through EPSS
- Public exploit detection from multiple sources:
- ExploitDB repository scanning
- GitHub security research monitoring
- VulnCheck intelligence integration
- Integration with CISA Known Exploited Vulnerabilities (KEV) catalog
- Nuclei template matching for vulnerability verification
- Advanced patching priority assessment (A+ to D rating) based on:
- CVSS base scores
- EPSS probability
- Public exploit availability
- Presence in CISA KEV catalog
- Multiple vulnerability scanner format support:
- REDCheck reports
- Nmap Vulners output
- Custom XML formats
- Direct CVE list input
- PDF report analysis
- Plain text file processing
- Detailed Excel reports with:
- Summary statistics
- Color-coded priority indicators
- Data filtering capabilities
- Multiple sheets for exploits and references
- HTML report generation with interactive elements
- Bilingual report support (English/Russian)
View sample reports and outputs in our examples directory:
# Clone repository
git clone https://github.com/cansolele/exploit-seek.git
cd exploit-seek
# Build and start containers
docker-compose build --no-cache
docker-compose up -d
# The server will be available at http://0.0.0.0:5000
# The client will be available at http://0.0.0.0:8080Server Setup
- Install system dependencies:
sudo apt update
sudo apt install -y python3 python3-pip python3-venv libxml-xpath-perl pdfgrep- Create and activate virtual environment:
python3 -m venv venv
source venv/bin/activate- Install Python dependencies:
cd server
pip install -r requirements.txt- Run the server:
# Development mode
python server.py
# Production mode with Gunicorn
gunicorn --worker-class geventwebsocket.gunicorn.workers.GeventWebSocketWorker \
--workers 1 --bind 0.0.0.0:5000 server:appClient Setup
- Navigate to the client directory:
cd exploit-seek/client- Install client dependencies:
npm install- Build the client application:
npm run build- Serve the client application:
- Using Python's HTTP server:
python3 -m http.server 8080 --directory dist- Or using Node.js serve package:
npx serve -s distexploit-seek/
ββ client/ # Frontend application
β ββ Dockerfile
β ββ src/
β β ββ components/ # React components
β β β ββ Auth/ # Authentication components
β β β ββ ExploitsTable/ # Main analysis interface
β β β ββ Footer/ # Footer components
β β β ββ Header/ # Header and settings
β β ββ hooks/ # Custom React hooks
β β ββ App.jsx # Main application component
β ββ vite.config.js # Vite configuration
ββ server/ # Backend application
β ββ Dockerfile
β ββ auth.py # Authentication handling
β ββ constants.py # Configuration constants
β ββ cve_parsers.py # CVE extraction logic
β ββ data_loaders.py # External API integrations
β ββ excel_generator.py # Excel report generation
β ββ html_generator.py # HTML report generation
β ββ exploitdb_data.py # ExploitDB integration
β ββ logger_config.py # Logging configuration
β ββ models.py # Database models
β ββ routes.py # API routes
β ββ server.py # Server initialization
ββ docs/ # Screenshots and examples
β ββ images/
β ββ dashboard.png
β ββ logo.png
ββ docker-compose.yml # Docker compose configuration
The application requires API keys for full functionality:
- NVD API key: Register at NVD Portal
- VulnCheck API key: Available at VulnCheck
Configure these in the application settings after installation.
- Initial Setup
- Configure server address
- Set up API keys (NVD, VulnCheck)
- Choose interface language (English/Russian)
- Select theme mode (Dark/Light)
- Configure other interface preferences
- Data Input
- Choose input method (manual/file upload)
- Select vulnerability scanner type
- Upload or enter CVE data
- Analysis Configuration
- Select data sources
- Configure output settings
- Choose sorting options
- Report Generation
- Select report format (HTML/Excel)
- Configure report details
- Download and view results
Reports include:
- Detailed CVE information with CVSS scores
- Exploitation probability assessments
- Available public exploits from multiple sources
- Patching priority recommendations
- References and additional resources
Excel reports feature:
- Color-coded priority indicators
- Custom data filtering
- Multiple data sheets
- Summary statistics
HTML reports provide:
- Interactive elements
- Comprehensive data presentation
- Easy navigation
- Export capabilities
- NVD - CVE information and CVSS scores
- FIRST.org - EPSS scoring
- CISA - Known Exploited Vulnerabilities Catalog
- Offensive Security - Exploit Database
- Project Discovery - Nuclei Templates
- VulnCheck - Vulnerability Intelligence
- React + Vite
- Material-UI
- Socket.IO Client
- Recharts
- Flask
- SQLAlchemy
- Flask-SocketIO
- OpenPyXL
- Jinja2
- Docker
- Docker Compose
- Gunicorn
- Gevent
Upcoming features and improvements:
- π§ Neural analysis integration with Ollama
- π€ AI-powered vulnerability assessment
- π Advanced risk prediction models
- π Additional vulnerability scanner support
- π Automated scan result import
- π Enhanced interactive HTML reports
- π¨ Customizable report templates
- π Advanced data visualization options
- π Deep learning-based exploit detection
- π― Enhanced risk scoring algorithms
- π Real-time threat intelligence integration
For questions, bug reports, and suggestions, please contact: shvs@cbi-info.ru