RoqueNight / LFI---RCE-Cheat-Sheet
Transition form local file inclusion attacks to remote code exection
☆56Updated 4 years ago
Alternatives and similar repositories for LFI---RCE-Cheat-Sheet:
Users that are interested in LFI---RCE-Cheat-Sheet are comparing it to the libraries listed below
- XSS Bypass☆29Updated last year
- Resources and exploits made for OSWE preparation.☆29Updated last year
- Swagger UI >=3.14.1 < 3.38.0 XSS payload☆19Updated 11 months ago
- Custom scan profiles for use with Burp Suite Pro☆135Updated 11 months ago
- Here Are Some Bug Bounty Resource From Twitter☆88Updated last month
- ☆36Updated last year
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- Simple Django to show post-exploitation options when server-side template injection (SSTI) is present in app using Django Templates.☆16Updated 3 years ago
- ☆109Updated 2 years ago
- Scripts, files, cheatsheets and more used for pentesting and my OSWE / AWAE exam.☆30Updated last month
- Dump files via Directory Traversal, LFI, Arbitrary File Read in a breeze with the help of ffuf☆18Updated last year
- Dockerized labs For Web Expert (OSWE) certification. Preparation for coming AWAE Training ...☆101Updated 3 years ago
- ☆39Updated last year
- OpenSSH 2.3 < 7.7 - Username Enumeration☆41Updated last year
- My OSWE Pre-preperation (i.e. before acutally buying the course) phase plan and notes!☆71Updated 2 years ago
- ImageMagick LFI PoC [CVE-2022-44268]☆52Updated last year
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆78Updated 4 years ago
- Port Swigger Labs divided on the based of level and topic.☆13Updated 2 years ago
- LFI Payloads List coolected from github repos☆76Updated 4 years ago
- The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489☆30Updated 11 months ago
- SSTI Payload Generator☆89Updated 2 years ago
- A collection of solutions for every PortSwigger Academy Lab (in progress)☆94Updated 3 years ago
- ☆41Updated 3 years ago
- ☆47Updated 9 months ago
- Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi☆38Updated 3 years ago
- This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…☆93Updated last year
- ☆151Updated last year
- Prototype Pollution Scanner☆112Updated 3 years ago
- A wordlist repository with human-curated and reviewed content.☆101Updated last year
- PHP 8.1.0-dev Backdoor System Shell Script☆90Updated 3 years ago