roughiz / lfito_rceLinks
LFI to RCE via phpinfo() assistance or via controlled log file
☆68Updated 2 years ago
Alternatives and similar repositories for lfito_rce
Users that are interested in lfito_rce are comparing it to the libraries listed below
Sorting:
- ☆42Updated last year
- ☆37Updated 2 years ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆70Updated 4 years ago
- ☆27Updated 2 years ago
- ☆34Updated 3 years ago
- ☆42Updated 4 months ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆62Updated last month
- Unauthenticated Sqlinjection that leads to dump data base but this one impersonated Admin and drops a interactive shell☆22Updated 3 years ago
- Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege e…☆57Updated 2 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆129Updated 5 years ago
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆109Updated last year
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- Wordlist to bruteforce for LFI☆124Updated 5 years ago
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆128Updated last year
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆54Updated 3 weeks ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆77Updated last year
- An MS Sharepoint and Frontpage Auditing Tool☆49Updated 7 months ago
- Simple python which takes FirstName and LastName to generate possible AD Usernames. Usefull for OSCP, Labs...☆22Updated 5 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆77Updated last year
- CVE-2023-33733 reportlab RCE☆117Updated last year
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆32Updated 2 years ago
- HTTP verb tampering & methods enumeration☆59Updated 3 years ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆29Updated 2 years ago
- Web cache poisoning vulnerability scanner.☆71Updated 3 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 3 weeks ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆90Updated 7 months ago
- ☆57Updated last year
- Exploits targeting vBulletin.☆76Updated 2 years ago
- Automatic Tools For Metabase Exploit Known As CVE-2023-38646☆27Updated last year
- Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1☆58Updated 2 years ago