web渗透--提权辅助工具Windows-Exploit-Suggester

辅助工具介绍

• 辅助工具Windows-Exploit-Suggester此工具将目标补丁与Microsoft漏洞数据库进行比较，以检测目标潜在的缺失补丁。
• 必须在python2环境中运行
• python2 -m pip install xlrd
• python2 windows-exploit-suggester.py --update 得到2020-09-23-mssb.xls文件
• python2 windows-exploit-suggester.py -h

usage: windows-exploit-suggester.py [-h] [-v] [-i SYSTEMINFO] [-d DATABASE]
                                    [-u] [-a] [-t TRACE] [-p PATCHES]
                                    [-o OSTEXT] [-s] [-2] [-q] [-H HOTFIXES]
                                    [-r | -l]

search microsoft security bulletins for exploits based upon the patch level of
the machine by feeding in systeminfo command

optional arguments:
  -h, --help            show this help message and exit
  -v, --verbose         verbose output
  -i SYSTEMINFO, --systeminfo SYSTEMINFO
                        feed in an input file that contains the 'systeminfo'
                        command
  -d D