lfi
There are 103 repositories under lfi topic.
1N3/BlackWidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
v3n0m-Scanner/V3n0M-Scanner
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
AlisamTechnology/ATSCAN
Advanced dork Search & Mass Exploit Scanner
nemesida-waf/waf-bypass
Check your WAF before an attacker does
mzfr/liffy
Local file inclusion exploitation tool
payloadbox/rfi-lfi-payload-list
🎯 RFI/LFI Payload List
abhisharma404/vault
swiss army knife for hackers
swisskyrepo/DamnWebScanner
Another web vulnerabilities scanner, this extension works on Chrome and Opera
pikpikcu/XRCross
XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities
paralax/lfi-labs
small set of PHP scripts to practice exploiting LFI, RFI and CMD injection vulns
chrispetrou/FDsploit
File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
anmolksachan/TheTimeMachine
Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not
dragonked2/Egyscan
Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions that make Egyscan an indispensable tool in your security arsenal:
hansmach1ne/LFImap
Local File Inclusion discovery and exploitation tool
VainlyStrain/Vailyn
A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
AngelSecurityTeam/SQLiDumper-AngelSecurityTeam
Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI
dotPY-hax/gitlab_RCE
RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1
storenth/lazyrecon
Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.
capture0x/Lfi-Space
Lfi Scan Tool
kostas-pa/LFITester
LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.
thehackersbrain/CVE-2021-41773
Apache2 2.4.49 - LFI & RCE Exploit - CVE-2021-41773
smsharma/awesome-neural-sbi
Community-sourced list of papers and resources on neural simulation-based inference.
0bfxgh0st/lfienum
Local File Inclusion Enumeration (PoC)
ronin-rb/ronin-vulns
Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
Stuub/CVE-2024-4040-SSTI-LFI-PoC
CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support
AmoloHT/TTWAF
「🧱」Test a list of payloads and see if you can bypass it
Sybil-Scan/imagemagick-lfi-poc
ImageMagick LFI PoC [CVE-2022-44268]
Mr-xn/thinkphp_lang_RCE
about thinkphp lang RCE QVD-2022-46174 v6.0.1 <= Thinkphp <= v6.0.13 Thinkphp v5.0.x Thinkphp v5.1.x
DevanshRaghav75/AutomationGuide
Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
PinoyWH1Z/SSH-Private-Key-Looting-Wordlists
SSH Private Key Looting Wordlists. A collection of wordlists to aid in locating or brute-forcing SSH private key file names.
jpiechowka/zip-shotgun
Utility script to test zip file upload functionality (and possible extraction of zip files) for vulnerabilities (aka Zip Slip)
aryanrtm/Crascan
Crascan is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner.
TheHermione/DorkFinder
Automatic tool to find Google Dorks
farinap5/webpwn
Web Vulnerability Detector (XSS,SQL,LFI,XST,WAF)
treddis/dotdotfarm
Fast Path Traversal exploitation tool