# offensive-security/exploitdb

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/offensive-security-exploitdb).**

7,845 stars · 1,883 forks · gpl-2.0 · archived

## Links

- GitHub: https://github.com/offensive-security/exploitdb
- Homepage: https://gitlab.com/exploit-database/exploitdb
- awesome-repositories: https://awesome-repositories.com/repository/offensive-security-exploitdb.md

## Description

ExploitDB is a curated archive of exploit code and vulnerability data designed for penetration testing and security research. It serves as an offensive security knowledge base and a repository of publicly available proof-of-concept code used to validate software flaws.

The project provides a searchable collection of historical and current exploit vectors. It supports security threat intelligence by tracking public releases and aids in vulnerability research by providing a reference library for analyzing how specific systems can be compromised.

The archive is managed through a curated input pipeline that filters and validates submitted code. Data is stored in a flat-file structure with text-based metadata headers and search-optimized indexing to allow retrieval by platform or vulnerability identifier.

## Tags

### Security & Cryptography

- [Exploit Databases](https://awesome-repositories.com/f/security-cryptography/exploit-databases.md) — A curated collection of exploit code and vulnerability data for penetration testing and security research.
- [Exploit Proof-of-Concept Indexes](https://awesome-repositories.com/f/security-cryptography/exploit-proof-of-concept-indexes.md) — Maintains a curated archive of exploit code and vulnerability data for security research and penetration testing. ([source](https://github.com/offensive-security/exploitdb#readme))
- [Security Knowledge Bases](https://awesome-repositories.com/f/security-cryptography/governance-policy-frameworks/security-resources-knowledge/security-knowledge-bases.md) — Acts as a centralized repository of technical vulnerability information and historical exploit vectors.
- [Vulnerability Research and Analysis](https://awesome-repositories.com/f/security-cryptography/security/offensive-operations/vulnerability-research-analysis.md) — Offers a reference library of proof-of-concept code for analyzing how specific systems can be compromised.
- [Threat Intelligence Resources](https://awesome-repositories.com/f/security-cryptography/threat-intelligence-resources.md) — Tracks public exploit releases to help identify software versions currently targeted by attackers.

### Part of an Awesome List

- [Learning Resources](https://awesome-repositories.com/f/awesome-lists/security/offensive-security/learning-resources.md) — Provides real-world exploit examples for studying how to discover and leverage software vulnerabilities.
- [Penetration Testing](https://awesome-repositories.com/f/awesome-lists/security/penetration-testing.md) — Provides a searchable collection of exploit code used to verify security weaknesses during penetration testing.
- [Security Tools](https://awesome-repositories.com/f/awesome-lists/security/security-tools.md) — Searchable archive of the official exploit database.

### Data & Databases

- [Flat-File Databases](https://awesome-repositories.com/f/data-databases/flat-file-databases.md) — Uses a flat-file database structure to store individual exploit entries as standalone files.
- [Search and Indexing](https://awesome-repositories.com/f/data-databases/search-indexing-technologies/search-indexing.md) — Provides search-optimized indexing to allow rapid retrieval of exploits by CVE or platform.

### Software Engineering & Architecture

- [Content Review Pipelines](https://awesome-repositories.com/f/software-engineering-architecture/content-review-pipelines.md) — Implements a curated input pipeline that filters and validates submitted exploit code through a manual review process.