roughiz / lfito_rceLinks
LFI to RCE via phpinfo() assistance or via controlled log file
☆70Updated 2 years ago
Alternatives and similar repositories for lfito_rce
Users that are interested in lfito_rce are comparing it to the libraries listed below
Sorting:
- ☆42Updated last year
- Tool to enable blind sql injection attacks against websockets using sqlmap☆64Updated 3 months ago
- ☆38Updated 2 years ago
- ☆27Updated 2 years ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆71Updated 4 years ago
- ☆35Updated 3 years ago
- Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege e…☆57Updated 2 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆132Updated 5 years ago
- A utility for automating the testing and re-signing of Express.js cookie secrets.☆59Updated 2 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆97Updated last year
- An MS Sharepoint and Frontpage Auditing Tool☆50Updated 8 months ago
- Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability☆85Updated last year
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆108Updated last year
- Enumerate / Dump Docker Registry☆179Updated last year
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆77Updated last year
- Repository to store exploits created by Assetnotes Security Research team☆180Updated last year
- Wordlist to bruteforce for LFI☆125Updated 5 years ago
- ☆26Updated 3 years ago
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆128Updated last year
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆77Updated last year
- ☆45Updated 6 months ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆71Updated 2 years ago
- ☆37Updated last month
- CVE-2023-33733 reportlab RCE☆119Updated last year
- Send controlled amount of bytes, send msf-pattern, calculate offset, custom buffer, badcharacters all in one.☆16Updated last year
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆25Updated 4 years ago
- The following package is the standalone wordlist-only component to flask-unsign.