ExpLangcn / agartha
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to spot authentication/authorization issues, and converts Http requests to Javascript for further XSS exploitation and more.
☆49Updated 2 years ago
Alternatives and similar repositories for agartha:
Users that are interested in agartha are comparing it to the libraries listed below
- ☆42Updated 3 years ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 5 months ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated last year
- ☆43Updated last year
- A solid recon tool I use personally.☆30Updated last year
- Striping CDN IPs from a list of IP Addresses☆75Updated 2 years ago
- Script for Bug Bounty☆28Updated 3 years ago
- XSS Finder Via SSTI☆54Updated last year
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆33Updated 3 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- Tool for testing reflections in the HTTP responses☆60Updated last year
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆44Updated 10 months ago
- ☆37Updated last year
- ☆12Updated 3 years ago
- Web cache poisoning vulnerability scanner.☆65Updated 2 years ago
- Authorization-Nuclei-Templates☆38Updated 6 months ago
- ☆33Updated 2 years ago
- A "Spring4Shell" vulnerability scanner.☆49Updated 2 months ago
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Updated 2 years ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated 2 years ago
- Write-ups of All types Bugs☆19Updated 2 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- Some of the gf patterns which i use☆41Updated 3 years ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆58Updated last year
- ☆11Updated 2 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆70Updated 3 years ago
- Nuclei Templates Directory☆50Updated this week
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆43Updated 4 years ago