0xSojalSec / agartha
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to spot authentication/authorization issues, and converts Http requests to Javascript for further XSS exploitation and more.
☆13Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for agartha
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆25Updated 3 weeks ago
- Make an Linux Kernel rootkit visible again.☆43Updated last month
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆35Updated 10 months ago
- POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - CVE-2024-23692☆30Updated last week
- Proof of Concept Exploit for CVE-2024-9464☆42Updated last month
- ☆47Updated 5 months ago
- A Moodle Scanner☆35Updated this week
- Unauthenticated Remote Code Execution via Angular-Base64-Upload Library☆25Updated last month
- ☆55Updated 7 months ago
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆20Updated 3 months ago
- Proof-of-Concept for CVE-2024-46538☆45Updated 2 weeks ago
- Inject RDPThief into memory with PowerShell.☆55Updated last month
- ☆13Updated last year
- ☆59Updated 11 months ago
- A sophisticated PowerShell script that stealthily injects Base64-encoded shellcode into the target process, featuring anti-debugging tech…☆15Updated 5 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆106Updated last week
- ☆53Updated last month
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆60Updated 10 months ago
- A collection of PoCs for different injection techniques on Windows!☆42Updated last year
- Authentication Bypass in GoAnywhere MFT☆64Updated 9 months ago
- ☆14Updated 11 months ago
- ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.☆62Updated 2 months ago
- Brief writeup of post exploitation methodologies.☆17Updated last year
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆92Updated 9 months ago
- Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )☆61Updated 5 months ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆39Updated 5 months ago
- Lena's scripts/code/resources for malware analysis☆25Updated 5 months ago
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆86Updated 5 months ago