LFISuite
LFI Scanner
Automates Local File Inclusion vulnerability scanning and exploitation using various attack methods.
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
2k stars
56 watching
390 forks
Language: Python
last commit: over 2 years ago
Linked from 2 awesome lists
enaqx/awesome-pentest
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 mzfr/liffy | An exploit tool designed to manipulate local file inclusions in web applications | 789 |
 hvqzao/liffy | A tool for exploiting vulnerabilities in web applications to execute arbitrary code or read sensitive data from local files | 122 |
 hussein98d/lfi-files | A collection of pre-generated wordlists to aid in the brute force testing of Local File Inclusion (LFI) vulnerabilities | 118 |
 belane/linux-soft-exploit-suggester | A script to identify vulnerabilities in software packages on Linux systems | 222 |
 payloadbox/rfi-lfi-payload-list | Provides examples and explanations of vulnerabilities in web applications | 538 |
 lintstar/lstar | An Aggressor PowerShell plugin that automates various post-exploitation tasks to maintain persistence and evade detection in a CobaltStrike environment | 1,150 |
 mthbernardes/lfi-enum | Scripts to enumerate Linux servers by exploiting vulnerabilities in Remote File Inclusion (LFI) attacks. | 88 |
 reider-roque/linpostexp | Tools for analyzing and exploiting vulnerabilities in Linux systems | 176 |
 paralax/lfi-labs | A collection of PHP scripts designed for training and testing purposes to practice exploiting LFI, RFI, and CMD injection vulnerabilities. | 319 |
 team-firebugs/burp-lfi-tests | A collection of test cases and tools to help identify potential vulnerabilities in web applications by probing for LFI (Local File Inclusion) weaknesses. | 59 |
 fsecurelabs/dref | A tool designed to exploit DNS rebinding vulnerabilities in web applications, allowing it to bypass security restrictions and exfiltrate sensitive data | 481 |
 optiv/go365 | A tool designed to exploit vulnerabilities in Office 365 authentication systems | 621 |
 exploitsecurityio/uart-exploiter | A tool designed to access and manipulate UART interfaces using an FTDI cable. | 5 |
 mstxq17/cve-2021-1675_rdl_lpe | A tool exploiting a vulnerability to bypass security measures by loading a malicious DLL into memory. | 147 |
 vulnerscom/getsploit | A tool for searching and downloading exploits from various sources. | 1,726 |