krishpranav/lfi-exploiter

LFI Exploitation tool

Python

lfi-exploiter

LFI Exploitation tool

Installation:

git clone https://github.com/krishpranav/lfi-exploiter
cd lfi-exploiter
chmod +x *
python3 -m install -r requirements.txt
python3 lfiexploiter.py

Main feature

data:// for code execution
expect:// for code execution
input:// for code execution
filter:// for arbitrary file reads
/proc/self/environ for code execution in CGI mode
Apache access.log poisoning
Linux auth.log SSH poisoning
Direct payload delivery with no stager
Support for absolute and relative path traversal
Support for cookies for authentication

Reference