Comments (11)
@g0tmi1k no worries, I wrote a custom livecheck
Josephs-MacBook-Pro:Livecheckables joe$ brew livecheck exploitdb
exploitdb : 2016-12-24 ==> 2017-07-07
Josephs-MacBook-Pro:Livecheckables joe$ cat exploitdb.rb
class Exploitdb
livecheck :url => "https://github.com/offensive-security/exploit-database/releases",
:regex => %r{href="/offensive-security/exploit-database/releases/tag/([0-9,\.\-]+)"}
end
from exploitdb.
There is a daily release/tag ~ https://github.com/offensive-security/exploit-database/releases
Whatever is the latest at the time of upstream should be used.
Today is 2017-07-07
~ https://github.com/offensive-security/exploit-database/archive/2017-07-07.zip. This is what should be used.
It doesn't matter too much as the database (and its resource files), gets self updated via git (searchsploit -u
).
The only thing that doesn't get updated via the in-built update system is searchsploit
itself (which has had a few updates recently ~ https://github.com/offensive-security/exploit-database/commits/master/searchsploit). This is where having the homebrew package updated helps!
from exploitdb.
Thanks for the quick response! 🥇
from exploitdb.
You're welcome!
Thanks for getting homebrew updated (been meaning todo it myself for a while, just kept on forgetting!)
from exploitdb.
@g0tmi1k in that case it would be helpful to remove the explicit release https://github.com/offensive-security/exploit-database/releases/tag/2017-06-13
The GitHub API currently points to that, not the current tag. Visit https://github.com/offensive-security/exploit-database/releases/latest to see what I mean.
from exploitdb.
Thanks for the heads up @ilovezfs .
Looks like there was 2x "dated" tags the API was pointing too (13-06-2017
& 03-05-2014
). Should now be fixed.
from exploitdb.
@g0tmi1k yup, much better! There is still a problem with the livecheck unfortunately:
$ brew livecheck exploitdb
exploitdb (guessed) : 2016-12-24 ==> 12312014
That ancient tag is considered greatest in terms of version order. Livecheck runs
git ls-remote https://github.com/offensive-security/exploit-database.git
and I can see there are quite a few of those that will be considered greater than the current tag.
We can probably craft a custom livecheck if it's not feasible for you to remove those.
from exploitdb.
At this stage, we are unable to remove them (there is an automated system in place that handles the daily action).
I just removed the 'manual' tags that was done by either myself or @dookie2000ca - can't really delete all the others. Sorry!
I'm not aware of livecheck
and have very limited knowledge with git ls-remote
, so I'm not sure how its guessing what the latest release is.
Going forward, What else could we do to help out?
from exploitdb.
Great stuff!
...I've just done brew tap homebrew/livecheck
. Looks like I have a new toy to play with ;)
from exploitdb.
@g0tmi1k cool! I've just pushed the exploitdb livecheck: Homebrew/homebrew-livecheck@8e4668b
from exploitdb.
Time to update ;)
from exploitdb.
Related Issues (20)
- Incorrect version for Joomla CVE-2015-8562 HOT 1
- Problem with AWK HOT 2
- CVE data is not easily retrievable HOT 1
- Copied exploits with changed credits
- Unavailable Resource (Links) HOT 1
- Please rework the --colour option HOT 1
- Incorrect date in files_exploits.csv HOT 21
- AbuseNormal: DMCA Copyright Takedown request / Copyright Law, 30/09/2021 HOT 1
- FEATURE REQUEST Allow to search searchsploit by CVE # HOT 10
- 45233.py multiple CryptographyDeprecationWarning [Kali 2020.1] HOT 1
- 50011.sh finds vulnerable version of polkit if polkit is not installed on Redhat systems HOT 1
- Publish APIs to search HOT 1
- Dates on the file files_exploits.csv are wrong HOT 1
- error updating searchesploit HOT 1
- A possible communication deadlock due to the lost notify HOT 2
- Wierd interpreters HOT 2
- The ngx_http_parse_chunked for ubuntu 13.04 HOT 1
- urxvt-256-colors unknown terminal HOT 2
- DIR816L_FW206b01 auth bypass HOT 1
- Document that you "do not make the CVEs public in offline mode" HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from exploitdb.