LFISuite

LFI Exploiter

A tool designed to automate the exploitation of Local File Inclusion vulnerabilities and provide a reverse shell.

Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner

GitHub

2k stars
56 watching
393 forks
Language: Python
last commit: over 2 years ago
Linked from 2 awesome lists


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
mzfr/liffy An exploit tool designed to manipulate local file inclusions in web applications 795
hvqzao/liffy A tool for exploiting vulnerabilities in web applications to execute arbitrary code or read sensitive data from local files 122
hussein98d/lfi-files A collection of pre-generated wordlists to aid in the brute force testing of Local File Inclusion (LFI) vulnerabilities 118
belane/linux-soft-exploit-suggester A script to identify vulnerabilities in software packages on Linux systems 222
payloadbox/rfi-lfi-payload-list Provides examples and explanations of vulnerabilities in web applications 540
lintstar/lstar An Aggressor PowerShell plugin that automates various post-exploitation tasks to maintain persistence and evade detection in a CobaltStrike environment 1,153
mthbernardes/lfi-enum Scripts to enumerate Linux servers by exploiting vulnerabilities in Remote File Inclusion (LFI) attacks. 88
reider-roque/linpostexp Tools for analyzing and exploiting vulnerabilities in Linux systems 176
paralax/lfi-labs A collection of PHP scripts designed for training and testing purposes to practice exploiting LFI, RFI, and CMD injection vulnerabilities. 321
team-firebugs/burp-lfi-tests A collection of test cases and tools to help identify potential vulnerabilities in web applications by probing for LFI (Local File Inclusion) weaknesses. 59
fsecurelabs/dref A tool designed to exploit DNS rebinding vulnerabilities in web applications, allowing it to bypass security restrictions and exfiltrate sensitive data 482
optiv/go365 A tool designed to exploit vulnerabilities in Office 365 authentication systems 624
exploitsecurityio/uart-exploiter Tool designed to access UART interfaces using physical FTDI cables. 5
mstxq17/cve-2021-1675_rdl_lpe A tool exploiting a vulnerability to bypass security measures by loading a malicious DLL into memory. 147
vulnerscom/getsploit A tool for searching and downloading exploits from various sources. 1,727