Loading repository data…
Loading repository data…
AnonKryptiQuz / repository
Injectra is a Python-based tool for injecting custom payloads into various file types using their magic numbers. It supports file types like zip, rar, docx, jpg, and more, allowing for customizable payloads. It ensures seamless payload injection while maintaining the integrity of the original file.
Injectra is a robust tool designed for injecting custom payloads into files based on their magic numbers. By leveraging this technique, Injectra modifies files for penetration testing and security research purposes. The tool detects the file type by analyzing its magic numbers and injects the payload seamlessly into the correct position.
zip, rar, docx, jpg, png, pdf, and more.Clone the repository:
git clone https://github.com/AnonKryptiQuz/Injectra.git
cd Injectra
Install required packages:
pip install -r requirements.txt
Ensure requirements.txt contains the following:
prompt_toolkit==3.0.36
colorama==0.4.6
Run the tool:
Start the tool by running:
python Injectra.py
Follow the prompts:
View the results:
Example Payload: By default, Injectra uses the following PHP payload for command execution:
<?php system($_GET["cmd"]); ?>
Users can customize the payload during runtime by providing their own.
Injectra currently supports the following file types:
zip, rarpdf, docxjpg, png, mp4, mp3txt (special handling for files without magic numbers)For detailed instructions on how to use the files generated by Injectra (such as the not_malicious.jpeg and malicious.jpeg), please refer to the GUIDE.md inside the POC directory. This guide provides step-by-step instructions on testing payload injections with example files.
Created by: AnonKryptiQuz