0xSojalSec / agartha
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to spot authentication/authorization issues, and converts Http requests to Javascript for further XSS exploitation and more.
☆15Updated 2 years ago
Alternatives and similar repositories for agartha:
Users that are interested in agartha are comparing it to the libraries listed below
- Unauthenticated Remote Code Execution via Angular-Base64-Upload Library☆25Updated 5 months ago
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆47Updated 2 months ago
- A Moodle Scanner☆39Updated 4 months ago
- 「⚠️」Performing a BYOVD on the truesight.sys driver☆33Updated 3 months ago
- ☆58Updated 5 months ago
- ☆48Updated 9 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆39Updated last year
- Make an Linux Kernel rootkit visible again.☆47Updated 3 weeks ago
- Proof of Concept Exploit for CVE-2024-9464☆45Updated 5 months ago
- ☆43Updated 2 weeks ago
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆22Updated 7 months ago
- ☆38Updated last month
- ☆47Updated last month
- Grep subdomains from web pages.☆42Updated last month
- Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges☆22Updated 4 months ago
- فایل ها و فیلم های ورکشاپ ردتیم 2024 با هانت لرن☆32Updated 6 months ago
- Authentication Bypass in GoAnywhere MFT☆61Updated last year
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆33Updated last month
- The tool that bypasses the firewall's Application Based Rules and lets you connect to anywhere, ANY IP, ANY PORT and ANY APPLICATION.☆61Updated 7 months ago
- SAPLAR - LFI & Path Traversal Scanner☆14Updated 2 weeks ago
- ☆14Updated last year
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆87Updated 9 months ago
- ☆51Updated 2 months ago
- Simple netexec wraper with html repport☆18Updated 10 months ago
- CVE-2025-24016: RCE in Wazuh server! Remote Code Execution☆29Updated last month
- Situational Awareness script to identify how and where to run implants☆48Updated 3 months ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated 11 months ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆23Updated last month
- POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - CVE-2024-23692☆40Updated last month
- External recon toolkit☆45Updated 2 months ago