From 8211f91f2d9ed8e28cf3ea5f11a47de479796668 Mon Sep 17 00:00:00 2001 From: s0lray Date: Sat, 28 Mar 2026 21:23:19 -0400 Subject: [PATCH] Enrich Exploits & Advisories tools (THE-167) Populated enrichment metadata for 20 tools: 7 Default Passwords tools and 13 Vulnerabilities/CVE tools. Status: 16 live, 1 degraded (SecurityFocus), 2 down (Phenoelit, Hashes.org). All tools passive OPSEC. Normalized VP field names to project schema (registration, editUrl, api, deprecated). Co-Authored-By: Paperclip --- public/arf.json | 340 +++++++++++++++++++++++++++++++++++++++++++++--- 1 file changed, 320 insertions(+), 20 deletions(-) diff --git a/public/arf.json b/public/arf.json index 2668057f..21707b6c 100644 --- a/public/arf.json +++ b/public/arf.json @@ -19619,104 +19619,404 @@ { "name": "Default Passwords DB", "type": "url", - "url": "https://cirt.net/passwords/" + "url": "https://cirt.net/passwords/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Searchable database of default credentials for network devices, servers, and applications.", + "bestFor": "Finding default credentials for routers, switches, firewalls, and servers", + "input": "Device/application name or IP address", + "output": "List of known default username/password pairs", + "opsec": "passive", + "opsecNote": "Passive lookup of public default credential database; no registration required" }, { "name": "Default passwords list", "type": "url", - "url": "https://default-password.info/" + "url": "https://default-password.info/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Comprehensive directory of default credentials for hardware, software, and online services.", + "bestFor": "Broad default credential lookup across multiple device categories", + "input": "Device/application name or search term", + "output": "Matching default credential entries with context", + "opsec": "passive", + "opsecNote": "Passive lookup of public default password database" }, { "name": "Default Password Lookup Utility", "type": "url", - "url": "https://fortypoundhead.com/tools_dpw.asp" + "url": "https://fortypoundhead.com/tools_dpw.asp", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Online tool for looking up default credentials for network and security appliances.", + "bestFor": "Device-specific default credential lookups", + "input": "Appliance model or name", + "output": "Default usernames and passwords for matched devices", + "opsec": "passive", + "opsecNote": "Passive public database lookup" }, { "name": "Phenoelit Default Password List", "type": "url", - "url": "https://phenoelit.org/dpl/dpl.html" + "url": "https://phenoelit.org/dpl/dpl.html", + "status": "down", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": false, + "api": false, + "invitationOnly": false, + "deprecated": true, + "description": "Archived database of default credentials for network and security devices (currently offline).", + "bestFor": "Historical reference for default credentials", + "input": "Device name/model (historical)", + "output": "Default credentials (archived content unavailable)", + "opsec": "passive", + "opsecNote": "Passive lookup; site currently unavailable" }, { "name": "Default Router Passwords", "type": "url", - "url": "https://www.routerpasswords.com/" + "url": "https://www.routerpasswords.com/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Searchable database of default credentials for routers from major manufacturers.", + "bestFor": "Router default credential enumeration", + "input": "Router model or manufacturer name", + "output": "Default username and password pairs for matching router models", + "opsec": "passive", + "opsecNote": "Passive public database lookup; no tracking or authentication" }, { "name": "Open Sez Me Default Passwords", "type": "url", - "url": "https://open-sez.me/" + "url": "https://open-sez.me/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Online tool providing access to a database of default credentials for consumer and business devices.", + "bestFor": "Quick lookups for common device default credentials", + "input": "Device brand or model name", + "output": "Default usernames and passwords for identified devices", + "opsec": "passive", + "opsecNote": "Passive lookup of public default credentials database" }, { "name": "Hashes.org", "type": "url", - "url": "https://hashes.org/" + "url": "https://hashes.org/", + "status": "down", + "pricing": "freemium", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": false, + "api": true, + "invitationOnly": false, + "deprecated": true, + "description": "Password hash lookup and reverse hash service (currently unavailable).", + "bestFor": "Hash-to-plaintext lookup and rainbow table queries", + "input": "MD5, SHA1, SHA256, or other hashes", + "output": "Plaintext password corresponding to hash (if available)", + "opsec": "passive", + "opsecNote": "Passive lookup of pre-computed hash database; site currently unreachable" } ] }, { "name": "Vulert: Updated Open Source Vulnerability Database", "type": "url", - "url": "https://vulert.com/vuln-db" + "url": "https://vulert.com/vuln-db", + "status": "live", + "pricing": "freemium", + "localInstall": false, + "googleDork": false, + "registration": true, + "editUrl": false, + "api": true, + "invitationOnly": false, + "deprecated": false, + "description": "Open-source vulnerability database tracking CVEs and advisories for open-source software packages.", + "bestFor": "Open-source software vulnerability intelligence and dependency analysis", + "input": "Package name, version, or CVE identifier", + "output": "Vulnerability details, affected versions, advisory links, remediation guidance", + "opsec": "passive", + "opsecNote": "Passive querying of public vulnerability database; API available with registration" }, { "name": "MITRE ATT&CK", "type": "url", - "url": "https://attack.mitre.org/" + "url": "https://attack.mitre.org/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": false, + "api": true, + "invitationOnly": false, + "deprecated": false, + "description": "Comprehensive knowledge base and framework documenting adversary tactics, techniques, and procedures (TTPs) based on real-world observations.", + "bestFor": "Threat actor TTP research, attack pattern analysis, defensive capability planning", + "input": "Tactic, technique ID, or adversary group name", + "output": "Detailed TTP documentation, affected software, mitigation strategies, related attack patterns", + "opsec": "passive", + "opsecNote": "Passive reference material; no direct probing or interaction with targets" }, { "name": "Exploit DB", "type": "url", - "url": "https://www.exploit-db.com/" + "url": "https://www.exploit-db.com/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": true, + "invitationOnly": false, + "deprecated": false, + "description": "Searchable database of public vulnerability exploits, shellcode, and proof-of-concept code.", + "bestFor": "Exploit code discovery, vulnerability research, proof-of-concept development", + "input": "CVE ID, software name, vulnerability type, or search term", + "output": "Exploit code, shellcode, PoC scripts, vulnerability details, links to advisories", + "opsec": "passive", + "opsecNote": "Passive search of public exploit database; contains active malware and exploit code" }, { "name": "Packet Storm", "type": "url", - "url": "https://packetstormsecurity.com/" + "url": "https://packetstormsecurity.com/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Comprehensive archive of security exploits, shellcode, tools, and research papers with historical coverage.", + "bestFor": "Exploit discovery, security tool research, historical vulnerability analysis", + "input": "Vulnerability name, CVE ID, software name, or search term", + "output": "Exploit code, vulnerability details, security advisories, research papers", + "opsec": "passive", + "opsecNote": "Passive search of public security archive" }, { "name": "SecurityFocus", "type": "url", - "url": "https://www.securityfocus.com/bid" + "url": "https://www.securityfocus.com/bid", + "status": "degraded", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Historical vulnerability database with BID (Bugtraq ID) identifier system for organizing security advisories.", + "bestFor": "Legacy vulnerability lookups using Bugtraq ID (BID) system", + "input": "Bugtraq ID, CVE ID, or vulnerability name", + "output": "Vulnerability description, affected software, severity, related links", + "opsec": "passive", + "opsecNote": "Passive vulnerability database lookup" }, { "name": "NVD - NIST", "type": "url", - "url": "https://nvd.nist.gov/" + "url": "https://nvd.nist.gov/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": true, + "invitationOnly": false, + "deprecated": false, + "description": "US government's official database of published vulnerabilities, maintained by NIST, with CVE identifiers and CVSS scores.", + "bestFor": "Authoritative CVE lookup, CVSS scoring, vulnerability metrics, compliance references", + "input": "CVE ID, software name, or search term", + "output": "Complete vulnerability records with CVSS scores, affected versions, remediation links, references", + "opsec": "passive", + "opsecNote": "Passive government vulnerability database lookup; API available" }, { "name": "OSV Vulnerability Library", "type": "url", - "url": "https://osv.dev/list" + "url": "https://osv.dev/list", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": false, + "api": true, + "invitationOnly": false, + "deprecated": false, + "description": "Open-source vulnerability database aggregating security advisories from multiple package ecosystems (npm, PyPI, Rust, Go, etc.).", + "bestFor": "Open-source package vulnerability intelligence, dependency scanning, ecosystem-specific advisories", + "input": "Package name, version, or CVE/OSV ID", + "output": "Vulnerability details, affected versions, remediation guidance, ecosystem-specific advisories", + "opsec": "passive", + "opsecNote": "Passive querying of public open-source vulnerability database; API available" }, { "name": "CVE Details", "type": "url", - "url": "https://www.cvedetails.com/" + "url": "https://www.cvedetails.com/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Interactive CVE database with advanced filtering, statistics, and trend analysis on published vulnerabilities.", + "bestFor": "CVE research, vulnerability trend analysis, vendor vulnerability comparison", + "input": "CVE ID, vendor name, product name, or search filters", + "output": "Vulnerability descriptions, CVSS scores, affected products, published dates, trending metrics", + "opsec": "passive", + "opsecNote": "Passive CVE database lookup with statistical analysis" }, { "name": "CVE - MITRE", "type": "url", - "url": "https://www.cve.org/" + "url": "https://www.cve.org/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": true, + "api": true, + "invitationOnly": false, + "deprecated": false, + "description": "Official CVE list maintained by MITRE, the authoritative source for CVE identifiers and vulnerability definitions.", + "bestFor": "Official CVE lookup, CVE ID assignment verification, canonical vulnerability identifiers", + "input": "CVE ID or vulnerability search term", + "output": "Canonical CVE record with published date, description, references, and official status", + "opsec": "passive", + "opsecNote": "Passive official CVE list lookup; API access available" }, { "name": "OWASP", "type": "url", - "url": "https://www.owasp.org/index.php/Main_Page" + "url": "https://www.owasp.org/index.php/Main_Page", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": false, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Open Worldwide Application Security Project providing security testing guides, vulnerability lists, and application security best practices.", + "bestFor": "Web application security research, OWASP Top 10 reference, secure development guidance", + "input": "OWASP project or vulnerability category name", + "output": "Security documentation, testing guidelines, vulnerability descriptions, remediation strategies", + "opsec": "passive", + "opsecNote": "Passive educational reference material on web security" }, { "name": "Secunia", "type": "url", - "url": "https://secuniaresearch.flexerasoftware.com/community/research/" + "url": "https://secuniaresearch.flexerasoftware.com/community/research/", + "status": "live", + "pricing": "freemium", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": false, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Vulnerability research database operated by Flexera (formerly Secunia), providing security advisories and patch management information.", + "bestFor": "Software vulnerability advisories, patch management, security research", + "input": "Software name, vendor, or search term", + "output": "Security advisories, vulnerability descriptions, patch availability, affected versions", + "opsec": "passive", + "opsecNote": "Passive vulnerability advisory database lookup" }, { "name": "Australian Cyber Security Centre", "type": "url", - "url": "https://www.cyber.gov.au/" + "url": "https://www.cyber.gov.au/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": false, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Australian government agency providing cybersecurity advice, threat intelligence, and vulnerability guidance to businesses and government.", + "bestFor": "Government-backed cybersecurity advisories, Australian threat intelligence, critical infrastructure security", + "input": "Vulnerability search term or advisory identifier", + "output": "Security advisories, threat alerts, vulnerability guidance, mitigation recommendations", + "opsec": "passive", + "opsecNote": "Passive government cybersecurity resource; published threat intelligence" }, { "name": "Canadian Centre for Cyber Security", "type": "url", - "url": "https://www.cyber.gc.ca/" + "url": "https://www.cyber.gc.ca/", + "status": "live", + "pricing": "free", + "localInstall": false, + "googleDork": false, + "registration": false, + "editUrl": false, + "api": false, + "invitationOnly": false, + "deprecated": false, + "description": "Canadian government cybersecurity agency providing threat intelligence, security advisories, and best practice guidance.", + "bestFor": "Canadian government cybersecurity guidance, threat alerts, secure configuration guidelines", + "input": "Vulnerability search term, threat advisory identifier, or guidance topic", + "output": "Security advisories, threat alerts, best practice documentation, vulnerability guidance", + "opsec": "passive", + "opsecNote": "Passive government cybersecurity resource; published threat intelligence and guidance" } ] },