Burp-LFI-tests
Vulnerability tests
A collection of test cases and tools to help identify potential vulnerabilities in web applications by probing for LFI (Local File Inclusion) weaknesses.
Fuzzing for LFI using Burpsuite
59 stars
2 watching
30 forks
last commit: about 8 years ago
Linked from 1 awesome list
Related projects:
Repository | Description | Stars |
---|---|---|
1n3/intruderpayloads | A collection of tools and methodologies for web application testing and vulnerability assessment. | 3,686 |
daffainfo/match-replace-burp | A collection of Burp Suite rules for identifying and exploiting vulnerabilities in web applications | 338 |
payloadbox/rfi-lfi-payload-list | Provides examples and explanations of vulnerabilities in web applications | 538 |
vulnerscom/burp-vulners-scanner | A tool that searches for vulnerabilities in web applications using an external API | 834 |
paralax/lfi-labs | A collection of PHP scripts designed for training and testing purposes to practice exploiting LFI, RFI, and CMD injection vulnerabilities. | 319 |
codewatchorg/burp-indicatorsofvulnerability | A Burp extension that scans application traffic for signs of vulnerabilities and potential attack targets | 41 |
xnl-h4ck3r/gap-burp-extension | An extension for Burp Suite that identifies potential security vulnerabilities in web applications by analyzing endpoints, parameters, and generating custom target wordlists. | 1,253 |
allfro/burpkit | A tool for creating JavaScript-based penetration testing plugins for web applications | 456 |
vulnerscom/burp-dirbuster | A plugin designed to facilitate the use of Dirbuster in Burp Suite for discovering potential vulnerabilities. | 70 |
redhuntlabs/burpsuite-asset_discover | Identifies various asset types in HTTP responses to help find vulnerabilities | 219 |
hardik05/damn_vulnerable_c_program | An example C program demonstrating common types of vulnerabilities, designed to be fuzzed using various tools. | 676 |
portswigger/json-decoder | Tools for analyzing and manipulating HTTP requests and responses in BurpSuite | 10 |
d3vilbug/hackbar | A plugin for Burpsuite that enables advanced web application testing and exploitation techniques | 1,539 |
freefv/tencent_yun_tools | A collection of Python scripts to exploit vulnerabilities in Tencent Cloud services using an AccessKey | 34 |
projectdiscovery/nuclei-burp-plugin | A plugin for Burp Suite that enables automated template generation and execution of security testing tools. | 1,192 |