ExpLangcn / agarthaLinks
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to spot authentication/authorization issues, and converts Http requests to Javascript for further XSS exploitation and more.
☆49Updated 3 years ago
Alternatives and similar repositories for agartha
Users that are interested in agartha are comparing it to the libraries listed below
Sorting:
- Striping CDN & WAF IPs from a list of IP Addresses☆79Updated 2 months ago
- ☆42Updated 4 years ago
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Updated 2 years ago
- Script for Bug Bounty☆29Updated 3 years ago
- A "Spring4Shell" vulnerability scanner.☆49Updated 6 months ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Updated 3 years ago
- ☆13Updated 3 years ago
- Some contributions in the nuclei-templates repository☆59Updated 3 years ago
- ☆45Updated last year
- XSS Finder Via SSTI☆56Updated last year
- Enhanced 403 bypass header☆21Updated 2 years ago
- collection of various grep patterns collected from tomnomnom/gf and other places☆22Updated 4 years ago
- A solid recon tool I use personally.☆30Updated 2 years ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated 2 years ago
- ☆37Updated last year
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆60Updated 2 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆45Updated 4 years ago
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.☆55Updated 2 years ago
- Nuclei Templates Directory☆52Updated last week
- XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for au…☆59Updated 3 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated last year
- Extract endpoints marked as disallow in robots files to generate wordlists.☆57Updated 3 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- Resolvers updated daily for reconftw☆47Updated 2 years ago
- This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research☆44Updated 2 years ago
- ☆61Updated 4 years ago
- Nuclei POC 模板☆10Updated 2 years ago
- A simple tool which makes creating nuclei templates even easier.☆37Updated last year
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆52Updated 3 years ago
- Check if domain has bug bounty program or not☆28Updated 2 years ago