{"id":19307447,"url":"https://github.com/codexlynx/nayra","last_synced_at":"2025-04-22T12:36:38.855Z","repository":{"id":34714929,"uuid":"38691737","full_name":"codexlynx/nayra","owner":"codexlynx","description":"LFI Exploitation Tool","archived":false,"fork":false,"pushed_at":"2017-03-26T22:08:45.000Z","size":17,"stargazers_count":9,"open_issues_count":0,"forks_count":5,"subscribers_count":3,"default_branch":"master","last_synced_at":"2025-04-02T00:03:17.664Z","etag":null,"topics":["hacking","lfi-exploitation","msfvenom","red-team","web-security","webshell"],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/codexlynx.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGE.txt","contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2015-07-07T14:07:50.000Z","updated_at":"2024-01-07T18:46:50.000Z","dependencies_parsed_at":"2022-09-14T18:10:32.697Z","dependency_job_id":null,"html_url":"https://github.com/codexlynx/nayra","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/codexlynx%2Fnayra","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/codexlynx%2Fnayra/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/codexlynx%2Fnayra/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/codexlynx%2Fnayra/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/codexlynx","download_url":"https://codeload.github.com/codexlynx/nayra/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":250242095,"owners_count":21398066,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["hacking","lfi-exploitation","msfvenom","red-team","web-security","webshell"],"created_at":"2024-11-10T00:11:02.351Z","updated_at":"2025-04-22T12:36:38.560Z","avatar_url":"https://github.com/codexlynx.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"## Nayra - LFI Exploitation Tool\r\n--------\r\n\r\n![python](https://img.shields.io/badge/python-2.7-green.svg?style=flat)\r\n\r\nThis is a small tool to exploit a LFI (Local File Inclusion) web vulnerability.\r\nThe tool provide a functional shell prompt. In the future, I will add some very useful extra options.\r\n\r\n### Disclaimer\r\n\r\n* __Legal__:\r\nThis tool is designed only for __educational__ purposes and __ethical__ hacking. Use it at your own responsibility. Damages or legal problems caused by the tool are the responsibility of the user.\r\n\r\n* __License__:\r\nThis tool is subject under the following license:\r\n\r\n \u003eCreative Commons Attribution-ShareAlike 3.0\r\n\r\n ![](https://licensebuttons.net/l/by-sa/3.0/88x31.png \"Creative Commons\")\r\n\r\n More Info: [Here](https://creativecommons.org/licenses/by-sa/3.0/ \"Legal Description\")\r\n\r\n\r\n### Usage\r\n* __Required Parameters__:\r\n\r\n```\r\n-t, --type              Specifies the type of action\r\n-u, --url               URL vulnerable to LFI (Local File Inclusion)\r\n```\r\n\r\n* __List of types__:\r\n\r\n```\r\nshell                    Exploit the vulnerability to get a shell\r\nupload                   Upload a file to remote server\r\nmsfvenom                 Upload payload generated by msfvenom\r\n```\r\n\r\n* __Optional Parameters__:\r\n \r\n```\r\n-m, --method (=GET)      It can be -\u003e [GET|POST]\r\n-n, --name (=php_1)      Used to specify the corresponding attack\r\n                         payload in \"data.json\"\r\n\r\n-f, --file               File to upload (Only \"upload\" or \"msfvenom\" types)\r\n-a, --argvs              Secondary parameters (Only \"msfvenom\" type)\r\n\r\n-c, --cookies            Session cookies\r\n-x, --proxy              Using a proxy -\u003e [http://user:passwd@host:port]\r\n-p, --path               When it is necessary to make a directory traversal\r\n-b, --null-byte          Add Poison Null Byte (%00)\r\n```\r\n\r\n* __Other Parameters__:\r\n\r\n```\r\n-h, --help               Display this message\r\n```\r\n\r\n### Demo\r\n\r\n![nayra](https://cloud.githubusercontent.com/assets/12601189/8551306/a78ded2c-24cd-11e5-8493-a71824533352.gif)\r\n\r\n### About\r\nThis tool was created by: __@codexlynx__.\r\n\r\n* Twitter: [https://twitter.com/codexlynx](https://twitter.com/codexlynx)\r\n* GitHub: [https://github.com/codexlynx](https://github.com/codexlynx)\r\n\r\n----------------\r\nAbout the tool name:\r\n\r\n__In Spanish:__ [https://es.wikipedia.org/wiki/Nayra](https://es.wikipedia.org/wiki/Nayra)\r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcodexlynx%2Fnayra","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcodexlynx%2Fnayra","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcodexlynx%2Fnayra/lists"}