macOS
brew install exploitdblocal Homebrew formula metadata
sudo port install exploitdbMacPorts ports tree · security/exploitdb/Portfile · source: api.github.com
brew
Database of public exploits and corresponding vulnerable software. Version 2026-07-08 via Homebrew; verified 2026-07-08.
install
brew install exploitdblocal Homebrew formula metadata
sudo port install exploitdbMacPorts ports tree · security/exploitdb/Portfile · source: api.github.com
nix profile install nixpkgs#exploitdbnixpkgs package indexes · pkgs/by-name/ex/exploitdb/package.nix · source: api.github.com
sudo pacman -S exploitdbArch Linux sync databases · exploitdb · source: geo.mirror.pkgbuild.com
overview
Database of public exploits and corresponding vulnerable software
history
Exploit-DB is OffSec's public archive of exploit code, shellcode, papers, and proof-of-concept material for vulnerable software. It is built for penetration testers and vulnerability researchers who need searchable, actionable examples rather than advisory prose.
The Homebrew package is mostly useful because it installs the database and SearchSploit, the command-line tool for querying a local checkout. That makes Exploit-DB one of the rare security datasets that package managers ship as a practical offline research corpus.
The archive traces back to milw0rm, a public exploit archive started by str0ke in early 2004 after another exploit source moved behind a paid model. OffSec's history page presents milw0rm as a trusted community source because submitted exploits were verified before inclusion.
In July 2009, str0ke announced that milw0rm would close, then said it would continue temporarily because of community demand. OffSec took over the database in November 2009, launched the exploit-db.com domain that month, and continued the service as Exploit-DB.
The current GitLab repository is the official source tree for Exploit-DB exploits and shellcode, with companion repositories for binary exploits and papers. Its README says the repository is updated daily with recent submissions.
Exploit-DB became a standard reference because it preserved working exploit and proof-of-concept material in a searchable form. OffSec describes it as a non-profit public-service project and a CVE-compliant archive intended for penetration testers and vulnerability researchers.
SearchSploit turned the web archive into a local Unix workflow. The official manual documents Kali Linux packaging, Git installation, and Homebrew installation, and notes that the standard Kali GNOME build includes the exploitdb package by default.
SearchSploit searches a local copy of Exploit-DB by one or more terms, with options for title-only searches, exact matching, CVE lookup, JSON output, Nmap XML correlation, path lookup, and mirroring selected exploits into a working directory.
The manual emphasizes offline use: a tester can take a local checkout into segregated or air-gapped networks, update it later, and optionally add binary-exploit and papers repositories for more complete local data.
Exploit-DB is a package-manager oddity: it is both a command-line program and a frequently updated vulnerability corpus. Installing it with Homebrew or apt gives users a filesystem tree of exploits plus a shell-oriented search interface.
For Unix users, the interesting part is not just the executable but the layout and update behavior: SearchSploit reads CSV indexes, points at exploit/shellcode/paper paths through .searchsploit_rc, and can be kept current through package updates or git.
security posture
escape, surveillance, or offensive capability signal.
red risk · medium confidence · escape-surveillance-offensive
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
<exploitdb checkout>/.searchsploit_rcexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
searchsploit | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
install metadata
| Package key | brew:exploitdb |
|---|---|
| Version | 2026-07-08 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/exploitdb |
| Homepage | https://www.exploit-db.com/ |
| Repository | https://gitlab.com/exploit-database/exploitdb |
| Upstream docs | https://gitlab.com/exploit-database/exploitdb |
| License | GPL-2.0-or-later |
| Source archive | https://gitlab.com/exploit-database/exploitdb.git |
| Last updated | 2026-07-08T03:29:09Z |
| Pulse | updated |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | exploitdb |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
exploitdb
nix profile install nixpkgs#exploitdbexploitdb 20260602-1
Offensive Security’s Exploit Database Archive
sudo pacman -S exploitdbexploitdb
sudo port install exploitdbsource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.