LFI-FINDER - Tool Focuses On Detecting Local File Inclusion (LFI) Vulnerabilities
2023-7-30 20:30:0 Author: www.kitploit.com(查看原文) 阅读量:18 收藏

Written by TMRSWRR

Version 1.0.0

Instagram: TMRSWRR

How to use

LFI-FINDER is an open-source tool available on GitHub that focuses on detecting Local File Inclusion (LFI) vulnerabilities. Local File Inclusion is a common security vulnerability that allows an attacker to include files from a web server into the output of a web application. This tool automates the process of identifying LFI vulnerabilities by analyzing URLs and searching for specific patterns indicative of LFI. It can be a useful addition to a security professional's toolkit for detecting and addressing LFI vulnerabilities in web applications.

This tool works with geckodriver, search url for LFI Vuln and when get an root text on the screen, it notifies you of the successful payload.

Installation

git clone https://github.com/capture0x/LFI-FINDER/
cd LFI-FINDER
bash setup.sh
pip3 install -r requirements.txt
chmod -R 755 lfi.py

THIS IS FOR LATEST GOOGLE CHROME VERSION

Bugs and enhancements

For bug reports or enhancements, please open an issue here.

Copyright 2023

LFI-FINDER - Tool Focuses On Detecting Local File Inclusion (LFI) Vulnerabilities LFI-FINDER - Tool Focuses On Detecting Local File Inclusion (LFI) Vulnerabilities Reviewed by Zion3R on 8:30 AM Rating: 5


文章来源: http://www.kitploit.com/2023/07/lfi-finder-tool-focuses-on-detecting.html
如有侵权请联系:admin#unsafe.sh