lfi-exploitation

There are 3 repositories under lfi-exploitation topic.

• mzfr / liffy

  Local file inclusion exploitation tool

  hachacktoberfestlfilfi-exploitationlocal-file-inclusionreverse-shell
  Language:Python 767

• payloadbox / rfi-lfi-payload-list

  🎯 RFI/LFI Payload List

  rfilfirfi-exploitonlfi-exploitationlfi-vulnerabilityrfi-vulnerabillitywebsecurityappsecapplication-securityweb-application-securitypayloadpayloadspayload-listbugbountybug-bountysecuritysecurity-researchsecurity-researchersecurity-researchersweb-hacking
  528

• hansmach1ne / LFImap

  Local File Inclusion discovery and exploitation tool

  lfiweb-applicationexploitationlocal-file-inclusionpython3rficommand-injectionremote-code-executionlfi-exploitationremote-file-inclusionpenetration-testingpentesting
  Language:Python 210
• Vailyn

  VainlyStrain / Vailyn

  A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

  websecurityinformation-leakexploitationvulnerability-scannersdirectory-traversalpath-traversalpentest-toolwebsecvulnerability-assessmentpenetration-testingfilter-evasionvulnerability-detectionpentestinglfilfi-shellslfi-exploitationsecuritylocal-file-inclusionrcetakeover
  Language:Python 196

• kostas-pa / LFITester

  LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.

  pythonlfi-detectionpentest-toolexploitationcybersecuritypenetration-testing-toolslfi-exploitationlfi-vulnerabilitycrawlerhackinglfibugbountyenumerationfuzzingweb-hackingwebhackingpenetration-testingpentesting
  Language:Python 101

• farinap5 / webpwn

  Web Vulnerability Detector (XSS,SQL,LFI,XST,WAF)

  xss-exploitationxss-vulnerabilityxss-detectionxss-attackssqlinjectionsqli-vulnerability-scannersqli-pentesterpythonpentestinglfilfi-exploitationwaf-detectionxstwebpwn
  Language:Python 24

• BoxingOctopusCreative / toxin

  LFI (Local File Inclusion) Exploitation Tool

  clicklfi-exploitationlocal-file-inclusionpythonrequestssecurity-tools
  Language:Python 18

• S1lkys / Auto_LFI

  A simple Script which tests for LFI (Local File Inclusion) via Curl

  lfilfi-exploitationcurllocal-file-inclusion
  Language:Shell 16

• moeinfatehi / lfi-to-rce-scenario

  This repository is a Dockerized php application containing a LFI (Local File Inclusion) vulnerability which can lead to RCE (Remote Code Execution).

  lfilfi-exploitationlfi-vulnerabilitylocal-file-inclusionos-command-injectionrceremote-command-executionlfi-to-rcelfi-to-shellapplication-securityowaspowasp-top-10command-injectionlfi-challengelfi-scenariolfi-detectionlfi-exploitlfi-labslfi-rce
  Language:PHP 11

• machine1337 / lfiscan

  A small and fast bash script to automate LFI vulnerability.

  lfilfi-exploitationmachine1337bugbountyhackingshell
  Language:Shell 10

• codexlynx / nayra

  LFI Exploitation Tool

  red-teamhackingweb-securitylfi-exploitationmsfvenomwebshell
  Language:Python 9

• shinmao / SecurityLearning

  For Web Security

  ssrfxsslfi-exploitationsql-injectionunserializationxxe-injectioncmd-injection-vulns
  Language:JavaScript 6

• BlessedToastr / leafy

  Script to brute force a potential LFI vulnerability

  enumerationcyber-securitycybersecuritydirbusterdirectory-listerdirectory-listinghackinghacking-toolhacking-toolshackingtoolslfi-detectionlfi-exploitationlfi-vulnerability
  Language:Python 4

• krishpranav / lfi-exploiter

  LFI Exploitation tool

  pythonlfi-exploitlfi-exploiterlfi-exploitationpython3linuxpentesting
  Language:Python 2
• LFI-Striker

  MouathA / LFI-Striker

  LFI Finder

  cybersecuritylfilfi-detectionlfi-exploitlfi-exploitationlfi-scannerlfi-vulnerability
  Language:Java 2

• Asiern / LFI-Dumper

  Dump files over Local File Inclusion vulnerability

  cyber-securitylfi-exploitationlocal-file-inclusion
  Language:Go 1

• Cappricio-Securities / CVE-2024-4956

  Sonatype Nexus Repository Manager 3 (LFI)

  bugbountybugbounty-toolbugbounty-toolscve-2024-4956cve-2024-4956-exploitcve-2024-4956-poccve-2024-4956-scannerlfilfi-detectionlfi-exploitlfi-exploitationlfi-exploiterlfi-scannerlocal-file-inclusionsonatype-nexus-repository-manager-3
  Language:Python 1

• dr34mhacks / operation-file-hunt

  A vulnerable lab for understanding difference between LFI and File Retrieval

  lfilfi-exploitationrcevulnerable-application
  Language:PHP 1

• jstigerwalt / WEB-Fuzz

  Web Fuzz | LFI Log File

  lfiweb-fuzzloglfi-exploitation
  1

• TheBugFather / LFI-Chef

  Takes input wordlist in native path format to generate encoding evasion, path traversals, and null byte injections

  lfilfi-exploitationpythonwordlistwordlist-generatorwordlist-processing
  Language:Python 1

• YuraveON / xssrflfi

  Just an automation of XSS, SSRF, and LFI tester for Web Application

  penetration-testing-toolsssrf-toolxss-scannerlfi-exploitationsecurity-automation
  Language:Shell 1

• A1-exe / lfi-brute-forcer

  brute force LFI using python

  lfilfi-exploitationlfi-vulnerability
  Language:Python 0

• ethicalhacker7192 / Cattack

  A educational LFI exploit tool that works on severely misconfigured systems.

  educational-projectlfi-exploitationpython3
  Language:Python 0

• Jsmoreira02 / LFI-Hunter

  Automated tool to bypass filtering systems and exploit Local File Inclusion, created for Bug Bounty tests and better optimization during the hack (and with special attention to CTFs)

  bugbountyctf-toolscybersecurityhacking-toollfi-exploitation
  Language:Python 0

• MikeRega7 / Scripts

  Scripts para automatizar tareas en CTFs

  bash-scriptbrute-force-attackslfi-exploitationpython3
  Language:Python 0

• rohitajariwal / web-app-security-scanner

  A web crawler and vulnerability scanner tool developed by Rohit Ajariwal

  clickjackingcommandinjectioncrosssitescriptingcsrfcsrf-attacksldaplfi-exploitationlfi-scannerlfi-vulnerabilitysql-injectionsql-injection-exploitationssrfssrf-exploitssrf-payloadssrf-scannervulnerability-scannerswebcrawlerxxexxe-injectionxxe-payloads
  Language:Python 0

• v4ss / Hacky_Nov_Write_Up_2022

  Dépôt des challenges que j'ai réalisés pour l'évènement CTF Hacky'Nov à Aix-en-Provence 2022.

  ctfctf-challengesctf-solutionsctf-writeupslfilfi-exploitationlfi-rcelfi-vulnerabilityrcehacky-novhackynovmot-aixmotaix
  Language:PHP 0

• Cappricio-Securities / CVE-2022-21371

  Oracle WebLogic Server (LFI)

  bugbountybugbounty-toolbugbounty-toolscve-2022-21371cve-2022-21371-poccve-2022-21371-scannerlfilfi-detectionlfi-exploitationlfi-exploiterlfi-scannerlfi-vulnerabilitylocal-file-inclusionoracle-weblogic-serveroracle-weblogic-server-lfi
  Language:Python

• defcon201 / toxin

  LFI (Local File Inclusion) Exploitation Tool

  hacktoberfestlfi-exploitationlfi-vulnerabilityred-teamhacker-tool
  Language:Python

• MinaMeh / Web-Security-Workshop-Shellamtes

  Web security workshop examples [Shellmates Club]

  infosecweb-securitysql-injection-attacksxss-injectionlfi-exploitationphp
  Language:PHP