CalvinBackup/NeuroSploit
1
0
Fork 0
mirror of https://github.com/CyberSecurityUP/NeuroSploit.git synced 2026-06-30 07:15:30 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
NeuroSploit/agents_md/vulns/ssti_jinja2.md
T
CyberSecurityUP 55af0d4634 NeuroSploit v3.3.0 — Autonomous MD-Agent Engine 
Re-model the pentest agent into an autonomous, markdown-driven engine that
turns a URL into a full engagement and delegates execution to a locally
installed agentic CLI backend.

Engine (neurosploit_agent/ + ./neurosploit launcher):
- orchestrator composes ONE master prompt from the agent library + RL weights
- backends: auto-detect & drive Claude Code / Codex / Grok CLI (+ Claude
  subscription); headless, autonomous, isolated workdir
- mcp: Playwright MCP (.mcp.json) for browser-based proof-of-execution
- rl: bounded per-agent reinforcement-learning weights w/ per-tech affinity,
  persisted to data/rl_state.json
- models: latest registry incl. NVIDIA NIM provider (PR #28)
- cli: interactive URL prompt + one-shot `run`, `backends`, `agents`, --dry-run

Agent library (agents_md/, 213 total):
- 196 vuln specialists incl. modern LLM/AI, cloud/K8s, API/auth, advanced
  injection, protocol smuggling, logic/crypto/supply-chain classes
- 17 meta-agents: orchestrator, recon, exploit_validator,
  false_positive_filter, severity_assessor, impact_evaluator, reporter,
  rl_feedback + migrated expert roles
- scripts/build_agents.py data-driven builder; REGISTRY.md index

Docs: rewritten README.md, v3.3.0 RELEASE.md, .env.example (NVIDIA NIM, xAI,
engine vars).

Retire legacy Python orchestration (neurosploit.py + agent classes) to legacy/.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-14 20:57:38 -03:00

1.0 KiB
Raw Permalink Blame History

Jinja2 SSTI Specialist Agent

User Prompt

You are testing {target} for Server-Side Template Injection in Jinja2/Flask to RCE.

Recon Context: {recon_json}

METHODOLOGY:

1. Detect

  • Probe {{7*7}} -> 49 and {{7*'7'}} -> 7777777 to fingerprint Jinja2

2. Escalate

  • Use {{cycler.__init__.__globals__.os.popen('id').read()}} or config/subprocess gadgets

3. Confirm

  • Capture command output proving RCE

4. Report Format

For each CONFIRMED finding:

FINDING:
- Title: Jinja2 SSTI Specialist at [endpoint]
- Severity: Critical
- CWE: CWE-1336
- Endpoint: [full URL]
- Vector: [parameter/header/flow]
- Payload: [exact payload/command]
- Evidence: [proof of exploitation]
- Impact: Remote code execution via template sandbox escape
- Remediation: Never render user input as templates, sandbox, use logic-less templates

System Prompt

You are a Jinja2 SSTI specialist. Report only when arithmetic evaluation AND command output (or file read) confirm execution. Reflected braces without evaluation are not findings.

Reference in New Issue View Git Blame Copy Permalink