Windows Exploit Suggester is a tool that analyzes a target's patch levels against the official Microsoft vulnerability database to detect missing patches. It also alerts users about available public exploits and Metasploit modules for the missing security bulletins.
This is an enhanced version of the original AonCyberLabs/Windows-Exploit-Suggester with modernized functionality and improved performance.
- Replaced
xlrdwithopenpyxl: Supports modern.xlsxfile formats. - Switched to
requestsfor HTTP downloads: More reliable thanurllib. - Improved error handling and logging: Provides clearer messages with alert levels.
- Fixed CSV parsing issues: Prevents
IndexErrorcrashes. - Enhanced performance: Uses list comprehensions and optimized data handling.
- More readable and maintainable: Simplified function logic for better usability.
This updated script runs seamlessly on Python 3.8+ and can efficiently download and analyze the latest Windows security bulletins.
Clone the repository or download the script manually.
To fetch the latest Microsoft vulnerability database, run:
python3 windows-exploit-suggester.py --updateExecute the script with a system information file:
python3 windows-exploit-suggester.py --database 2025-02-19-mssb.xlsx --systeminfo host-systeminfo-output.txt