LFISuite
LFI Exploiter
A tool designed to automate the exploitation of Local File Inclusion vulnerabilities and provide a reverse shell.
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
2k stars
56 watching
393 forks
Language: Python
last commit: over 2 years ago
Linked from 2 awesome lists
Related projects:
Repository | Description | Stars |
---|---|---|
mzfr/liffy | An exploit tool designed to manipulate local file inclusions in web applications | 795 |
hvqzao/liffy | A tool for exploiting vulnerabilities in web applications to execute arbitrary code or read sensitive data from local files | 122 |
hussein98d/lfi-files | A collection of pre-generated wordlists to aid in the brute force testing of Local File Inclusion (LFI) vulnerabilities | 118 |
belane/linux-soft-exploit-suggester | A script to identify vulnerabilities in software packages on Linux systems | 222 |
payloadbox/rfi-lfi-payload-list | Provides examples and explanations of vulnerabilities in web applications | 540 |
lintstar/lstar | An Aggressor PowerShell plugin that automates various post-exploitation tasks to maintain persistence and evade detection in a CobaltStrike environment | 1,153 |
mthbernardes/lfi-enum | Scripts to enumerate Linux servers by exploiting vulnerabilities in Remote File Inclusion (LFI) attacks. | 88 |
reider-roque/linpostexp | Tools for analyzing and exploiting vulnerabilities in Linux systems | 176 |
paralax/lfi-labs | A collection of PHP scripts designed for training and testing purposes to practice exploiting LFI, RFI, and CMD injection vulnerabilities. | 321 |
team-firebugs/burp-lfi-tests | A collection of test cases and tools to help identify potential vulnerabilities in web applications by probing for LFI (Local File Inclusion) weaknesses. | 59 |
fsecurelabs/dref | A tool designed to exploit DNS rebinding vulnerabilities in web applications, allowing it to bypass security restrictions and exfiltrate sensitive data | 482 |
optiv/go365 | A tool designed to exploit vulnerabilities in Office 365 authentication systems | 624 |
exploitsecurityio/uart-exploiter | Tool designed to access UART interfaces using physical FTDI cables. | 5 |
mstxq17/cve-2021-1675_rdl_lpe | A tool exploiting a vulnerability to bypass security measures by loading a malicious DLL into memory. | 147 |
vulnerscom/getsploit | A tool for searching and downloading exploits from various sources. | 1,727 |