#

lfi

Here are 56 public repositories matching this topic...

six2dez / reconftw

Sponsor

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

scanner hacking xss subdomain sqli fuzzing raspberry recon nuclei vulnerabilities bugbounty pentest hacktoberfest ssrf lfi ssti dorks

Updated Mar 27, 2022
Shell

1N3 / BlackWidow

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Updated Sep 27, 2021
Python

v3n0m-Scanner / V3n0M-Scanner

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Updated Mar 12, 2022
Python

AlisamTechnology / ATSCAN

Advanced dork Search & Mass Exploit Scanner

Updated Sep 4, 2021
Perl

mzfr / liffy

Local file inclusion exploitation tool

reverse-shell lfi lfi-exploitation local-file-inclusion

Updated Sep 10, 2021
Python

abhisharma404 / vault

Open

Handle CTRL+C properly

3

mzfr commented Jun 15, 2019

Currently pressing ctrl+c while scans are going on we get a big traceback.
It would be nice if we can handle that traceback and print something nice like Canceled by the user or something similar.

Read this to understand how to do it properly.

Read more

good first issue kwoc

Open

Refactor vault.py

2

Open

Update README.md & add new screenshots/GIFs screencast

3

Find more good first issues

swisskyrepo / DamnWebScanner

Sponsor

Another web vulnerabilities scanner, this extension works on Chrome and Opera

plugin extension rce sql-injection xss-vulnerability scans webbrowser lfi polyglot-vector web-vulnerabilities-scanner

Updated Sep 22, 2019
Python

payloadbox / rfi-lfi-payload-list

🎯 RFI/LFI Payload List

security bug-bounty application-security bugbounty appsec payload payloads lfi rfi web-hacking websecurity web-application-security security-research security-researcher lfi-exploitation payload-list lfi-vulnerability security-researchers rfi-exploiton rfi-vulnerabillity

Updated Jun 9, 2021

paralax / lfi-labs

small set of PHP scripts to practice exploiting LFI, RFI and CMD injection vulns

education lfi rfi command-injection cmd-injection-vulns lfi-labs rfi-labs

Updated Oct 1, 2020
PHP

chrispetrou / FDsploit

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Updated Mar 24, 2021
Python

pikpikcu / XRCross

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

cors coffee rce sqli xss-vulnerability recon bugbounty xss-scanner scanners ssrf lfi takeover-subdomain subdomain-enumeration cors-scanner bugbounty-tool check-subdomains

Updated Sep 6, 2020
Shell

ecriminal / phpvuln

🕸️ Audit tool to find common vulnerabilities in PHP source code

php hacking xss audit owasp penetration-testing sqli sql-injection vulnerability lfi command-injection cross-site-scripting local-file-inclusion

Updated Feb 22, 2022
Python

Vailyn

VainlyStrain / Vailyn

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

security penetration-testing rce pentesting exploitation information-leak vulnerability-detection takeover vulnerability-scanners vulnerability-assessment lfi directory-traversal websecurity pentest-tool websec lfi-exploitation local-file-inclusion path-traversal lfi-shells filter-evasion

Updated Sep 25, 2021
Python

dotPY-hax / gitlab_RCE

RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1

gitlab exploit rce ctf cve lfi cve-2018-19571 cve-2018-19585 gitlab-rce cve-2020-10977

Updated Dec 16, 2020
Python

storenth / lazyrecon

Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.

osint sqli fuzzing infosec recon bugbounty ssrf lfi security-automation reconnaissance arsenal vulnerability-scanner bhusa

Updated Feb 16, 2022
Shell

ph09nix / APSoft-Web-Scanner-v2

Powerful dork searcher and vulnerability scanner for windows platform

crawler automation sql csharp exploit hacking xss smartthings vulnerability crawlers scrapper xss-detection scanners dork lfi lfi-detection

Updated Mar 5, 2021
C#

anmolksachan / TheTimeMachine

Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not

jira osint scanner xss automate fuzzing parameter bugbounty fuzzer lfi openredirect

Updated Feb 21, 2022
Python

thehackersbrain / CVE-2021-41773

Apache2 2.4.49 - LFI & RCE Exploit - CVE-2021-41773

python exploit rce apache2 lfi thehackersbrain gauravraj cve-2021-41773

Updated Mar 12, 2022
Python

iilegacyyii / PoC-CVE-2021-41773

apache poc rce cve lfi

Updated Nov 24, 2021
Python

kostas-pa / LFITester

LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) attacks on a server.

python linux crawler tool hacking cybersecurity enumeration bug-bounty fuzzing bugbounty exploitation lfi web-hacking pentest-tool webhacking lfi-exploitation lfi-vulnerability penetration-testing-tools lfi-detection

Updated Feb 20, 2022
Python

AngelSecurityTeam / SQLiDumper-AngelSecurityTeam

Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI

mysql database oracle xss lfi rfi sqlinjection keyword-dork

Updated Mar 20, 2021

jpiechowka / zip-shotgun

Utility script to test zip file upload functionality (and possible extraction of zip files) for vulnerabilities (aka Zip Slip)

security zip hacking pentesting hacking-tool lfi security-tools security-testing zip-slip zip-shotgun

Updated May 31, 2019
Python

aryanrtm / Crascan

Crascan is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner.

shell exploit rce pentesting admin-finder lfi rfi vulnerability-scanner shell-backdoor

Updated Nov 4, 2018
Shell

S1lkys / Auto_LFI

A simple Script which tests for LFI (Local File Inclusion) via Curl

curl lfi lfi-exploitation local-file-inclusion

Updated Mar 11, 2019
Shell

h0nus / MyPayloads

Just a useless set of payload created by me. Saved here for remembrance.

list web custom xss rce sqli vulnerabilities payload lfi rfi own xxe

Updated Jan 24, 2021

raadfhaddad / Insecure-Deserialization

Insecure Deserialization, PDF and lab

php security slides lab hacking owasp deserialization labs penetration-testing sourcecode insecure lfi

Updated Nov 19, 2019
Hack

pranatdayal / pentesting-scripts

Useful scripts for pen testing. Require modification to run

python bash proof-of-concept exploits fuzzer lfi bufferoverflow

Updated Oct 17, 2020
Python

f4rber / Dorker

Let the D0RKER make dirty work

python python3 sqli lfi dorker dorks

Updated Feb 21, 2021
Python

hansmach1ne / lfimap

Local file inclusion discovery and exploitation tool

xss python3 web-application exploitation lfi rfi command-injection remote-code-execution local-file-inclusion lfi-vulnerability

Updated Mar 26, 2022
Python

Ag3ntQ / Faza

Faza terminal, Faza help to beginners for Penetration testing and CTF

sql xss hash xss-vulnerability ctf xss-detection hacking-tool lfi hacking-tools hashcracker lfi-vulnerability lfi-detection

Updated Feb 6, 2022
Python

Improve this page

Add a description, image, and links to the lfi topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the lfi topic, visit your repo's landing page and select "manage topics."