emadshanab/LFI-Payload-List external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

emadshanab/LFI-Payload-List

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/emadshanab/LFI-Payload-List)

Close

emadshanab / LFI-Payload-ListView on GitHubMore

• External links
• Readme badge

LFI Payloads List coolected from github repos

☆88May 9, 2020Updated 5 years ago

Alternatives and similar repositories for LFI-Payload-List

Users that are interested in LFI-Payload-List are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• emadshanab / subs_all

  View on GitHub
  Subdomain Enumeration Wordlist. 8956437 unique words. Updated.
  ☆75May 23, 2020Updated 5 years ago
• BrodieInfoSec / BIG_XSS

  View on GitHub
  This repository is a collection of Awesome XSS Payloads in 1 txt file
  ☆11Dec 23, 2019Updated 6 years ago
• ethicalhackingplayground / ssrf-tool

  View on GitHub
  ☆146Jul 25, 2022Updated 3 years ago
• omurugur / Open_Redirect_Payload_List

  View on GitHub
  Open Redirect Vulnerability Payload List
  ☆10Feb 23, 2021Updated 5 years ago
• emadshanab / 971-MB-content_discovery_wordlist

  View on GitHub
  Collection of content discovery wordlists in one wordlist.
  ☆38Jan 18, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• kh4sh3i / Bug-Hunting-Handbook

  View on GitHub
  Bug Hunting Handbook
  ☆11Aug 11, 2022Updated 3 years ago
• orwagodfather / ShoLister

  View on GitHub
  ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …
  ☆13May 10, 2022Updated 3 years ago
• emadshanab / Blind-xss-via-ffuf

  View on GitHub
  ☆12Jan 4, 2022Updated 4 years ago
• tomnomnom / burl

  View on GitHub
  A Broken-URL Checker
  ☆83Nov 2, 2017Updated 8 years ago
• hktalent / WS-Attacker

  View on GitHub
  WS-Attacker is a modular framework for web services Security penetration testing.
  ☆12May 16, 2019Updated 6 years ago
• akalankauk / XSS-SQL-Master-Payloads

  View on GitHub
  My Payload Collection (XSS,SQL ...)
  ☆14Jul 17, 2018Updated 7 years ago
• 0xspade / Combined-Wordlists

  View on GitHub
  A combined wordlists for files and directory discovery
  ☆127May 3, 2021Updated 4 years ago
• Septimus4 / Chronogen

  View on GitHub
  Creates date-based wordlists that can be used for penetration testing, QA fixtures, or any workflow that needs exhaustive date coverage.
  ☆16Mar 25, 2026Updated 2 weeks ago
• wunderwuzzi23 / this_is_fine_wuzzi

  View on GitHub
  Demo of a malicious python package that will run code upon pip download or install
  ☆29Sep 10, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• iustin24 / rextract

  View on GitHub
  CLI tool that extracts a regex pattern from a list of urls ( Rust )
  ☆61Sep 14, 2022Updated 3 years ago
• thomaslaurenson / trophyroom

  View on GitHub
  Collection of walk through, hints, notes, code snippets, tools logs and resources for vulnerable CTF-style boxes
  ☆12Apr 4, 2026Updated last week
• hueristiq / xs3scann3r

  View on GitHub
  A CLI utility to scan S3 buckets permissions
  ☆14May 14, 2023Updated 2 years ago
• Sachin-v3rma / hactivity

  View on GitHub
  A Tool to find subdomains from hackerone reports.
  ☆17Jun 23, 2021Updated 4 years ago
• bing0o / bash_scripting

  View on GitHub
  bash scripting thing!
  ☆195Nov 13, 2023Updated 2 years ago
• dark-warlord14 / ffufalias

  View on GitHub
  Alias for storing ffuf results
  ☆20May 23, 2020Updated 5 years ago
• 1ndianl33t / 1ndi-hacks

  View on GitHub
  Bug Bounty Tools
  ☆34Jul 2, 2020Updated 5 years ago
• sergiovks / AntiVirus-Bypass-PowerShell-In-Memory-Injection

  View on GitHub
  Script made for bypassing antivirus using Powershell Injection method. Place your shellcode from msfvenom on line 15, the script can be c…
  ☆15Jun 14, 2023Updated 2 years ago
• internetwache / CT_subdomains

  View on GitHub
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆346Oct 13, 2021Updated 4 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• w9w / Open_Redirects_list

  View on GitHub
  -
  ☆11Nov 21, 2020Updated 5 years ago
• nathunandwani / ctp-osce

  View on GitHub
  Tools that I've created/used during CTP-OSCE
  ☆10Jun 17, 2019Updated 6 years ago
• PortSwigger / psycho-path

  View on GitHub
  psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…
  ☆19Jun 28, 2018Updated 7 years ago
• hahwul / XSS-Payload-without-Anything

  View on GitHub
  XSS Payload without Anything.
  ☆104Jun 28, 2019Updated 6 years ago
• majidkalantarii / AwesomePenetrationTest

  View on GitHub
  ☆10May 15, 2020Updated 5 years ago
• ehsahil / recon-my-way

  View on GitHub
  This repository created for personal use and added tools from my latest blog post.
  ☆353Dec 7, 2022Updated 3 years ago
• vsec7 / urlive

  View on GitHub
  Check url is live (*HTTP status code "200 ok" only*).
  ☆15Jun 13, 2020Updated 5 years ago
• nightwatchcybersecurity / cloud_metadata_ips

  View on GitHub
  List of special metadata IPs used in cloud services
  ☆11Aug 9, 2019Updated 6 years ago
• 0xvm / csharp_reverse_shell

  View on GitHub
  c# reverse shell poc
  ☆26Dec 22, 2025Updated 3 months ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• austinsonger / payloadsandlists

  View on GitHub
  Payloads and Lists
  ☆23Feb 12, 2020Updated 6 years ago
• secf00tprint / payloadtester_lfi_rfi

  View on GitHub
  LFI/RFI Payload Tests Project
  ☆36Oct 21, 2019Updated 6 years ago
• Cillian-Collins / subscraper

  View on GitHub
  Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…
  ☆223Jul 10, 2020Updated 5 years ago
• oneplus-x / Awesome-Pentest

  View on GitHub
  A collection of awesome penetration testing resources
  ☆13Jan 13, 2019Updated 7 years ago
• rdoix / Buffer-Overflow-Cheat-Sheet

  View on GitHub
  ☆33Sep 7, 2020Updated 5 years ago
• SujalMeghwal / SidePeek.js

  View on GitHub
  SidePeek.js is a curated set of JavaScript payloads for browser-based recon. Run them in DevTools or as bookmarklets to uncover hidden AP…
  ☆21May 13, 2025Updated 11 months ago
• 0xAgun / All1

  View on GitHub
  Automated Recon Tool Installer
  ☆16Jun 29, 2022Updated 3 years ago