Windows Exploit Suggester:– Next Generation (WES-NG)

You are currently viewing Windows Exploit Suggester:– Next Generation (WES-NG)

WES-NG is a tool based on the output of Windows’ systeminfo utility, which lists the vulnerabilities to which the OS is vulnerable, as well as any exploits for these #vulnerabilities. Every Windows operating system from XP to 10, as well as their Windows Server counterparts, is supported.


  1. Run the command —update to get the most recent vulnerability database.
  2. Use Windows’ built-in systeminfo.exe programme to get system information for a local system or a remote system using systeminfo.exe /S MyRemoteHost, and save it to a file: systeminfo > systeminfo.txt
  3. Run WES-NG with the output file systeminfo.txt as a parameter: systeminfo.txt. The database is then used by WES-NG to assess whether fixes are appropriate to the system and which vulnerabilities are currently exposed, as well as exploits if they are accessible.
  4. Because #Microsoft’s data is frequently incomplete and false positives are reported by, consult the Wiki’s Eliminating False Positives page for advice on how to deal with this.

Disclaimer: The intended use for the tool is strictly educational and should not be used for any other purposes.

Download link:

Leave a Reply