roughiz / lfito_rce
LFI to RCE via phpinfo() assistance or via controlled log file
☆61Updated 2 years ago
Alternatives and similar repositories for lfito_rce:
Users that are interested in lfito_rce are comparing it to the libraries listed below
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆70Updated 3 years ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆58Updated last year
- ☆50Updated 2 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆125Updated 5 years ago
- ☆39Updated last year
- ☆34Updated 2 years ago
- InfluxDB CVE-2019-20933 vulnerability exploit☆39Updated 3 years ago
- Wordlist to bruteforce for LFI☆123Updated 5 years ago
- CVE-2021-27928 MariaDB/MySQL-'wsrep provider' 命令注入漏洞☆62Updated last year
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆116Updated last year
- Unauthenticated Sqlinjection that leads to dump data base but this one impersonated Admin and drops a interactive shell☆21Updated 3 years ago
- ☆160Updated 3 years ago
- Utility for creating ZipSlip archives☆71Updated 2 years ago
- Exploit for CVE-2021-3129☆66Updated 4 years ago
- Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1☆56Updated last year
- ☆33Updated 2 years ago
- Simple python which takes FirstName and LastName to generate possible AD Usernames. Usefull for OSCP, Labs...☆21Updated last month
- Shell Simulation over Net-SNMP with extend functionality☆95Updated 4 years ago
- Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege e…☆55Updated 2 years ago
- ☆39Updated last month
- HTTP verb tampering & methods enumeration☆56Updated 2 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆91Updated 9 months ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆118Updated last year
- Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability☆80Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 3 years ago
- Exploits targeting vBulletin.☆76Updated last year
- CVE-2023-33733 reportlab RCE☆114Updated last year
- ☆25Updated 2 years ago
- The following package is the standalone wordlist-only component to flask-unsign.☆37Updated 9 months ago
- A Python based ingestor for BloodHound☆83Updated 2 years ago