Burp-LFI-tests Logo

Burp-LFI-tests

0
Free
Visit Website

Fuzzing for LFI using Burpsuite This repository contains a collection of tests for Local File Inclusion (LFI) vulnerabilities using Burp Suite. The tests are designed to help security researchers and developers identify and exploit LFI vulnerabilities in web applications. The repository includes a variety of tests, including: * Basic LFI tests: These tests demonstrate the basic principles of LFI and how to exploit it. * Advanced LFI tests: These tests demonstrate more advanced techniques for exploiting LFI vulnerabilities. * Real-world LFI tests: These tests demonstrate how to exploit LFI vulnerabilities in real-world web applications. The repository also includes a guide on how to use Burp Suite to identify and exploit LFI vulnerabilities. This repository is intended for security researchers and developers who want to learn more about LFI vulnerabilities and how to exploit them. Please note that this repository is for educational purposes only and should not be used to exploit vulnerabilities in production systems.

FEATURES

ALTERNATIVES

A collection of Python scripts for password spraying attacks against Lync/S4B & OWA, featuring Atomizer, Vaporizer, Aerosol, and Spindrift tools.

Data exfiltration & infiltration tool using text-based steganography to evade security controls.

A practical guide on NTLM relaying for Active Directory attacks.

A Linux-based environment for penetration testing and vulnerability exploitation

Learn how to create new Malleable C2 profiles for Cobalt Strike to avoid detection and signatured toolset

A distributed systems and infrastructure simulator for attacking and debugging Kubernetes.

A penetration testing framework for identifying and exploiting vulnerabilities.

Docker image with essential tools for Kubernetes penetration testing.