Android 检索手机目录方式的文件选择器,轻量且界面友好,定制性高。This is a lightweight file selector, it can select files by retrieve phone directory
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
A unique automated LFi Exploiter with Bind/Reverse Shells
🎯 RFI/LFI Payload List
Tomcat-Ajp协议文件读取漏洞
一个支持多选图片和视频的图片选择器,同时有预览、编辑功能
📖本地文件包含漏洞实践源码及相应协议利用指南
small set of PHP scripts to practice exploiting LFI, RFI and CMD injection vulns
Wordlist to bruteforce for LFI
LFI-FINDER is an open-source tool available on GitHub that focuses on detecting Local File Inclusion (LFI) vulnerabilities
Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI
Apache2 2.4.49 - LFI & RCE Exploit - CVE-2021-41773
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1
A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations, while also converting HTTP requests to JavaScript for enhanced...
psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-searching payload generator, LFI mode, nix & windows support, si...
Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
Cnvd-2020-10487 / cve-2020-1938, scanner tool