https://github.com/krishpranav/lfi-exploiter
LFI Exploitation tool
https://github.com/krishpranav/lfi-exploiter
lfi-exploit lfi-exploitation lfi-exploiter linux pentesting python python3
Last synced: 11 months ago
JSON representation
LFI Exploitation tool
- Host: GitHub
- URL: https://github.com/krishpranav/lfi-exploiter
- Owner: krishpranav
- Created: 2021-04-27T08:47:32.000Z (about 5 years ago)
- Default Branch: master
- Last Pushed: 2021-04-27T10:26:56.000Z (about 5 years ago)
- Last Synced: 2024-10-15T22:21:17.829Z (over 1 year ago)
- Topics: lfi-exploit, lfi-exploitation, lfi-exploiter, linux, pentesting, python, python3
- Language: Python
- Homepage:
- Size: 92.8 KB
- Stars: 2
- Watchers: 1
- Forks: 3
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# lfi-exploiter
LFI Exploitation tool
[](https://forthebadge.com)
# Installation:
- git clone https://github.com/krishpranav/lfi-exploiter
- cd lfi-exploiter
- chmod +x *
- python3 -m install -r requirements.txt
- python3 lfiexploiter.py
# Main feature
```
data:// for code execution
expect:// for code execution
input:// for code execution
filter:// for arbitrary file reads
/proc/self/environ for code execution in CGI mode
Apache access.log poisoning
Linux auth.log SSH poisoning
Direct payload delivery with no stager
Support for absolute and relative path traversal
Support for cookies for authentication
```
# Reference
