reach forge

Generate exploit output and register routes through the admin API.

List kinds

reach forge --list

Describe one kind:

reach forge --list --kind xss_basic

List only generator kinds:

reach forge --list-generators

List only exploit kinds:

reach forge --list-exploits

Exploit-scoped listing:

reach forge exploit --list
reach forge exploit --list --kind web_local_storage_replay

Generate output and create route

reach forge generator new xss_basic \
  --endpoint /xss \
  --generator-kwarg callback_url=http://127.0.0.1:8000/beacon \
  --core-url http://127.0.0.1:8001

Dry run (no route creation)

reach forge generator new xss_basic \
  --dry-run \
  --generator-kwarg callback_url=http://127.0.0.1:8000/beacon

Useful options

• --header KEY=VALUE set response headers (repeatable)
• --server-header-file <path> pick Server header values from file
• --method, --status, --content-type tune route response metadata

Dependency check and install

reach forge exploit check --kind web_local_storage_replay
reach forge exploit install --kind web_local_storage_replay --dry-run

reach forge generator check --all
reach forge generator install --all --upgrade

Plugin package lifecycle

Scaffold a new minimal package:

reach forge scaffold generator demo_payload --id demo.payload --category demo

Validate packages:

reach forge validate --root plugins/forge
reach forge validate --root src/reach/forge

Reorganize package folders:

reach forge cleanup --source-root forge --destination-root plugins/forge --dry-run
reach forge cleanup --source-root forge --destination-root plugins/forge --apply

See related Forge docs:

• Forge Overview
• Generators
• Exploits
• Plugins and Subpages