Delta is an Exploit Discovery Tool designed to search for vulnerabilities based on CVE (Common Vulnerabilities and Exposures) or CWE (Common Weakness Enumeration). Delta is intended for use in security assessments and vulnerability discovery.
- CVE/CWE Search: Allows users to perform searches for vulnerabilities based on CVE identifiers or CWE types.
- Broad Vulnerability Search: Allows users to search for vulnerabilities across a wide range of software, technologies, and systems beyond CVE and CWE, including server technologies (e.g., Apache, Nginx), desktop applications, network devices, and more.
- Software and Technology Search: Enables users to perform searches based on specific software, technologies, or systems, such as databases, content management systems (CMS), development frameworks, and more.
- Customizable Queries: Enables users to specify search terms and parameters for tailored vulnerability discovery.
- Detailed Results: Provides comprehensive details about discovered vulnerabilities, including descriptions and associated data.
- User-Friendly CLI: Provides a command-line interface that formats query results in a clear and easily readable manner, improving the readability and accessibility of vulnerability information.
- Understanding Vulnerability Discovery: Learn about the role of CVE and CWE in identifying and understanding software vulnerabilities.
- Python Programming: Enhance skills in Python programming, particularly in making API requests and handling JSON data.
- Application Development: Understand techniques for developing CLI tools, with a focus on querying and reporting vulnerabilities.
Note: Delta is designed for educational and testing purposes. Ensure to use this application in a responsible and legal manner, following relevant cybersecurity guidelines and ethics.
pipx is a tool to install and run Python applications in isolated environments. Follow these steps to install Beta:
-
Install pipx:
sudo apt install pipx pipx ensurepath
-
Clone the Delta repository:
git clone https://github.com/sh4dowByte/delta.git cd delta -
Install Delta using pipx:
pipx install .
If you prefer not to use pipx, you can set up an alias to run delta.py directly from your terminal.
-
Clone the Delta repository:
git clone https://github.com/sh4dowByte/delta.git cd delta -
Install the required dependencies from
requirements.txt:python3 -m pip install -r requirements.txt
-
Open your terminal and add the following alias to your shell configuration file (e.g.,
~/.bashrcor~/.zshrc):alias delta='python3 ~/Pentest/delta/delta.py'
-
After adding the alias, run
source ~/.bashrc(orsource ~/.zshrcfor zsh) to reload your shell configuration.
Now, you can run delta directly from your terminal!
- SploitScan - A powerful vulnerability and exploit discovery tool focusing on scanning and finding vulnerabilities efficiently.
- Nuclei - A fast and customizable vulnerability scanner based on templates.
- ExploitDB - A database of exploits and vulnerable software for security researchers and penetration testers.
- PoC-in-GitHub - A repository that contains proof-of-concept exploits and vulnerabilities.
- HackerOne - A platform for bug bounty programs and vulnerability reporting.
- CISA - U.S. Cybersecurity and Infrastructure Security Agency, providing cybersecurity alerts and tools.
- CVE List - GitHub repository of CVEs (Common Vulnerabilities and Exposures) maintained by the CVE Program.
- API First - API providing real-time threat intelligence, security data, and vulnerability information.
- Metasploit - A powerful open-source penetration testing framework for developing and executing exploit code against remote targets.
