lfi-exploitation
Here are 48 public repositories matching this topic...
Language:All
Sort:Most stars
Local file inclusion exploitation tool
- Updated
Oct 1, 2025 - Python
Local File Inclusion discovery and exploitation tool
- Updated
Dec 31, 2024 - Python
A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
- Updated
Sep 25, 2021 - Python
LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.
- Updated
Dec 16, 2024 - Python
Waymap is a fast and optimized web vulnerability scanner built for penetration testers. It helps in identifying vulnerabilities by testing against various payloads.
- Updated
Oct 12, 2025 - Python
POC - CVE-2024–10914- Command Injection Vulnerability in `name` parameter for D-Link NAS
- Updated
Nov 27, 2024 - PowerShell
Web Vulnerability Detector (XSS,SQL,LFI,XST,WAF)
- Updated
Dec 8, 2020 - Python
LFI (Local File Inclusion) Exploitation Tool
- Updated
Jan 4, 2021 - Python
A simple Script which tests for LFI (Local File Inclusion) via Curl
- Updated
Mar 11, 2019 - Shell
This repository is a Dockerized php application containing a LFI (Local File Inclusion) vulnerability which can lead to RCE (Remote Code Execution).
- Updated
Jun 16, 2022 - PHP
A small and fast bash script to automate LFI vulnerability.
- Updated
Nov 21, 2022 - Shell
LFI Exploitation Tool
- Updated
Mar 26, 2017 - Python
🦖 PTScanner is a powerful tool for detecting Path Traversal and Local File Inclusion (LFI) vulnerabilities. developed as part of the ApachSAL project, it has been fully ported to Node.js, featuring significant enhancements and extended capabilities for modern penetration testing workflows.
- Updated
Jul 24, 2025 - JavaScript
CVE-2024-50623 POC - Cleo Unrestricted file upload and download
- Updated
Dec 23, 2024 - Shell
PDF Generator Addon for Elementor Page Builder <= 1.7.5 - Unauthenticated Arbitrary File Download
- Updated
Dec 19, 2024 - Shell
SQLi & LFI Scanner is a powerful security testing tool designed to detect SQL Injection (SQLi) vulnerabilities and Local File Inclusion (LFI) flaws in web applications. It helps ethical hackers and security researchers identify security weaknesses efficiently.
- Updated
Mar 23, 2025 - Python
For Web Security
- Updated
Jul 7, 2022 - JavaScript
LFI2Keys automates the process of extracting user accounts from /etc/passwd and attempts to locate private SSH keys through LFI
- Updated
Oct 13, 2025 - Python
Script to brute force a potential LFI vulnerability
- Updated
Sep 27, 2022 - Python
Improve this page
Add a description, image, and links to thelfi-exploitation topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with thelfi-exploitation topic, visit your repo's landing page and select "manage topics."