Burp-LFI-tests

Vulnerability tests

A collection of test cases and tools to help identify potential vulnerabilities in web applications by probing for LFI (Local File Inclusion) weaknesses.

Fuzzing for LFI using Burpsuite

GitHub
59 stars
2 watching
30 forks
last commit: about 8 years ago
Linked from 1 awesome list


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
1n3/intruderpayloads A collection of tools and methodologies for simulating web application attacks 3,681
daffainfo/match-replace-burp A collection of Burp Suite rules for identifying and exploiting vulnerabilities in web applications 338
payloadbox/rfi-lfi-payload-list Provides examples and explanations of vulnerabilities in web applications 538
vulnerscom/burp-vulners-scanner A tool that searches for vulnerabilities in web applications using an external API 834
paralax/lfi-labs A collection of PHP scripts designed for training and testing purposes to practice exploiting LFI, RFI, and CMD injection vulnerabilities. 319
codewatchorg/burp-indicatorsofvulnerability A Burp extension that scans application traffic for signs of vulnerabilities and potential attack targets 41
xnl-h4ck3r/gap-burp-extension An extension for Burp Suite that identifies potential security vulnerabilities in web applications by analyzing endpoints, parameters, and generating custom target wordlists. 1,253
allfro/burpkit A tool for creating JavaScript-based penetration testing plugins for web applications 456
vulnerscom/burp-dirbuster A plugin designed to facilitate the use of Dirbuster in Burp Suite for discovering potential vulnerabilities. 70
redhuntlabs/burpsuite-asset_discover Identifies various asset types in HTTP responses to help find vulnerabilities 219
hardik05/damn_vulnerable_c_program An example C program demonstrating common types of vulnerabilities, designed to be fuzzed using various tools. 676
portswigger/json-decoder Tools for analyzing and manipulating HTTP requests and responses in BurpSuite 10
d3vilbug/hackbar A plugin for Burpsuite that enables advanced web application testing and exploitation techniques 1,539
freefv/tencent_yun_tools A collection of Python scripts to exploit vulnerabilities in Tencent Cloud services using an AccessKey 34
projectdiscovery/nuclei-burp-plugin A plugin for Burp Suite that enables automated template generation and execution of security testing tools. 1,192