LFISuite
Exploit tool
Automates scanning and exploitation of Local File Inclusion vulnerabilities using various methods.
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
2k stars
56 watching
393 forks
Language: Python
last commit: almost 3 years ago
Linked from 2 awesome lists
enaqx/awesome-pentest
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 mzfr/liffy | An exploit tool designed to manipulate local file inclusions in web applications | 802 |
 hvqzao/liffy | A tool for exploiting vulnerabilities in web applications to execute arbitrary code or read sensitive data from local files | 123 |
 hussein98d/lfi-files | A collection of pre-generated wordlists to aid in the brute force testing of Local File Inclusion (LFI) vulnerabilities | 118 |
 belane/linux-soft-exploit-suggester | A script to identify vulnerabilities in software packages on Linux systems | 222 |
 payloadbox/rfi-lfi-payload-list | Provides examples and explanations of vulnerabilities in web applications | 545 |
 lintstar/lstar | An Aggressor PowerShell plugin that automates various post-exploitation tasks to maintain persistence and evade detection in a CobaltStrike environment | 1,166 |
 mthbernardes/lfi-enum | Scripts to enumerate Linux servers by exploiting vulnerabilities in Remote File Inclusion (LFI) attacks. | 89 |
 reider-roque/linpostexp | Tools for analyzing and exploiting vulnerabilities in Linux systems | 176 |
 paralax/lfi-labs | A collection of PHP scripts designed for training and testing purposes to practice exploiting LFI, RFI, and CMD injection vulnerabilities. | 321 |
 team-firebugs/burp-lfi-tests | A collection of test cases and tools to help identify potential vulnerabilities in web applications by probing for LFI (Local File Inclusion) weaknesses. | 60 |
 fsecurelabs/dref | A tool designed to exploit DNS rebinding vulnerabilities in web applications, allowing it to bypass security restrictions and exfiltrate sensitive data | 486 |
 optiv/go365 | A tool designed to exploit vulnerabilities in Office 365 authentication systems | 626 |
 exploitsecurityio/uart-exploiter | Tool designed to quickly access UART interfaces using physical FTDI cables | 5 |
 mstxq17/cve-2021-1675_rdl_lpe | A tool exploiting a vulnerability to bypass security measures by loading a malicious DLL into memory. | 147 |
 vulnerscom/getsploit | A tool for searching and downloading exploits from various sources. | 1,734 |