# bitsadmin/wesng

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/bitsadmin-wesng).**

4,881 stars · 603 forks · Python · BSD-3-Clause

## Links

- GitHub: https://github.com/bitsadmin/wesng
- awesome-repositories: https://awesome-repositories.com/repository/bitsadmin-wesng.md

## Topics

`exploit` `microsoft` `patches` `suggester` `updates` `windows`

## Description

This project is a set of specialized utilities for Windows vulnerability assessment and patch management auditing. It functions as a vulnerability scanner and exploit suggester that analyzes installed updates to identify missing security patches and their corresponding known vulnerabilities.

The system distinguishes itself by matching missing updates against a consolidated vulnerability database to recommend specific publicly available exploits. It maintains accuracy by synchronizing remote security bulletins into a local database and cross-referencing identified gaps against official update catalogs to handle patch supersedence and eliminate false positives.

The tool provides capabilities for security surface analysis, allowing users to prioritize high-risk gaps through severity-based filtering and installation date refinement. It also includes a database client for the collection and synchronization of security definition updates from multiple remote sources.

## Tags

### Security & Cryptography

- [Windows Vulnerability Assessments](https://awesome-repositories.com/f/security-cryptography/windows-vulnerability-assessments.md) — Performs security audits on Windows hosts to identify missing security updates and configuration gaps.
- [Kernel Exploit Identification](https://awesome-repositories.com/f/security-cryptography/kernel-exploit-identification.md) — Matches system versions and missing patches against vulnerability databases to find applicable exploits.
- [Missing Patch Detection](https://awesome-repositories.com/f/security-cryptography/missing-patch-detection.md) — Identifies missing security updates on target systems to uncover potential vulnerabilities. ([source](https://github.com/bitsadmin/wesng/blob/master/CMDLINE.md))
- [Patch Supersedence Filters](https://awesome-repositories.com/f/security-cryptography/patch-supersedence-filters.md) — Filters out vulnerabilities that have been resolved by newer, cumulative security updates.
- [Vulnerability Database Management](https://awesome-repositories.com/f/security-cryptography/security/offensive-operations/vulnerability-research-analysis/research-reference-knowledge/vulnerability-database-management.md) — Synchronizes and maintains local copies of security metadata and bulletins from external sources.
- [Update Catalog Querying](https://awesome-repositories.com/f/security-cryptography/update-catalog-querying.md) — Queries official update catalogs to verify the status of missing security patches and eliminate false positives.
- [Attack Surface Analysis](https://awesome-repositories.com/f/security-cryptography/attack-surface-analysis.md) — Analyzes the attack surface by filtering and prioritizing critical vulnerabilities on a target machine.
- [Patch Exclusion Lists](https://awesome-repositories.com/f/security-cryptography/missing-patch-detection/patch-exclusion-lists.md) — Excludes specific update identifiers from results to remove false positives and refine identified gaps. ([source](https://github.com/bitsadmin/wesng/wiki/Eliminating-false-positives))
- [Patch Date Filters](https://awesome-repositories.com/f/security-cryptography/patch-date-filters.md) — Filters vulnerability results based on the installation or release date of security patches. ([source](https://github.com/bitsadmin/wesng/blob/master/CHANGELOG.md))
- [Security Data Consolidations](https://awesome-repositories.com/f/security-cryptography/security-data-consolidations.md) — Aggregates vulnerability data and patch details from multiple remote sources into a unified local database. ([source](https://github.com/bitsadmin/wesng/blob/master/collector))
- [Security Vulnerability Trackers](https://awesome-repositories.com/f/security-cryptography/security-vulnerability-trackers.md) — Tracks the emergence of security flaws and updates vulnerability lists to maintain current analysis data. ([source](https://github.com/bitsadmin/wesng/blob/master/CMDLINE.md))
- [Vulnerability Data Synchronization](https://awesome-repositories.com/f/security-cryptography/vulnerability-scanning/vulnerability-data-synchronization.md) — Updates local security definitions and exploit records from remote vulnerability sources. ([source](https://github.com/bitsadmin/wesng#readme))

### Part of an Awesome List

- [Exploit Suggesters](https://awesome-repositories.com/f/awesome-lists/security/exploit-suggesters.md) — Identifies potential vulnerabilities and suggests applicable exploits based on the target system configuration.
- [Exploit Recommendations](https://awesome-repositories.com/f/awesome-lists/security/software-vulnerability-exploits/exploit-recommendations.md) — Suggests specific publicly available exploits by mapping missing security patches against a vulnerability database.
- [Exploit Development](https://awesome-repositories.com/f/awesome-lists/devtools/exploit-development.md) — Tool for identifying missing patches and potential exploits.
- [Privilege Escalation](https://awesome-repositories.com/f/awesome-lists/security/privilege-escalation.md) — Checks Windows systems for missing patches.
- [Privilege Escalation Tools](https://awesome-repositories.com/f/awesome-lists/security/privilege-escalation-tools.md) — Tool for suggesting Windows exploits based on system information.

### Data & Databases

- [Security Definition Synchronizations](https://awesome-repositories.com/f/data-databases/data-source-definitions/security-definition-synchronizations.md) — Downloads and merges external security bulletins and vulnerability metadata into a local database.
- [Vulnerability Result Refinements](https://awesome-repositories.com/f/data-databases/query-result-fetching/result-set-refinements/vulnerability-result-refinements.md) — Refines vulnerability findings using severity thresholds and installation dates to isolate high-risk gaps.

### DevOps & Infrastructure

- [Patch Auditing Tools](https://awesome-repositories.com/f/devops-infrastructure/vulnerability-management/patch-management/patch-auditing-tools.md) — Provides utilities for auditing installed fixes against official catalogs to identify security gaps.
- [Patch Accuracy Validation](https://awesome-repositories.com/f/devops-infrastructure/vulnerability-management/patch-management/patch-accuracy-validation.md) — Cross-references missing patches against official catalogs to remove false positives and verify installation requirements. ([source](https://github.com/bitsadmin/wesng#readme))

### System Administration & Monitoring

- [Exploit Mapping](https://awesome-repositories.com/f/system-administration-monitoring/audit-log-filters/severity-level-filtering/vulnerability-severity-filtering/exploit-mapping.md) — Connects missing patches to associated vulnerabilities based on severity, impact, and the availability of known exploits. ([source](https://github.com/bitsadmin/wesng/blob/master/CMDLINE.md))
- [Update Service Integrations](https://awesome-repositories.com/f/system-administration-monitoring/update-service-integrations.md) — Interfaces with system update services and offline scan files to identify missing security patches.
- [Vulnerability Severity Filtering](https://awesome-repositories.com/f/system-administration-monitoring/audit-log-filters/severity-level-filtering/vulnerability-severity-filtering.md) — Filters vulnerability results using severity thresholds and installation dates to prioritize high-risk gaps. ([source](https://github.com/bitsadmin/wesng/blob/master/CHANGELOG.md))

### Software Engineering & Architecture

- [Security Patch False Positives](https://awesome-repositories.com/f/software-engineering-architecture/false-positive-filtering/security-patch-false-positives.md) — Removes known incorrect update results from the analysis to ensure only truly missing patches are reported. ([source](https://github.com/bitsadmin/wesng/wiki/Eliminating-false-positives))
