0xSojalSec / agarthaLinks
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to spot authentication/authorization issues, and converts Http requests to Javascript for further XSS exploitation and more.
☆15Updated 3 years ago
Alternatives and similar repositories for agartha
Users that are interested in agartha are comparing it to the libraries listed below
Sorting:
- I-Espresso is a tool that enables users to generate Portable Executable (PE) files from batch scripts. Leveraging IExpress, it demonstrat…☆84Updated last year
- Cross platform (Linux / Windows) shellcode packer for CTFs and pentest / red team exams aiming for AV evasion !☆97Updated 3 weeks ago
- POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - CVE-2024-23692☆42Updated 9 months ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆66Updated last year
- POC for CVE-2024-3183 (FreeIPA Rosting)☆26Updated last year
- Convert your shellcode into an ASCII string☆125Updated 6 months ago
- ☆91Updated last year
- A tool to easily perform GitHub Device Code Phishing on red team engagements☆69Updated 3 weeks ago
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆44Updated last year
- ☆25Updated last year
- ☆59Updated 2 years ago
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆203Updated 9 months ago
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆49Updated 11 months ago
- The tool that bypasses the firewall's Application Based Rules and lets you connect to anywhere, ANY IP, ANY PORT and ANY APPLICATION.☆61Updated last year
- ☆46Updated 2 months ago
- Our Tips&Tricks☆128Updated 10 months ago
- Vast.ai Password Kracking☆92Updated 2 months ago
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆90Updated last year
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆207Updated 3 months ago
- ☆62Updated 2 weeks ago
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆97Updated 4 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated 2 years ago
- Vulnerabilities you my miss during a penetration testing.☆97Updated last year
- ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.☆87Updated 10 months ago
- Basic reverse shell in C using socket() with complete explanation☆68Updated 2 years ago
- ☆164Updated 9 months ago
- CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability☆146Updated 11 months ago
- RDE1 (Rusty Data Exfiltrator) is client and server tool allowing auditor to extract files from DNS and HTTPS protocols written in Rust. �…☆41Updated 8 months ago
- ☆15Updated 2 years ago
- ☆136Updated last year