LFI-Labs Logo

LFI-Labs

0
Free
Visit Website

A small set of PHP scripts designed for practicing exploiting LFI, RFI, and CMD injection vulnerabilities, primarily used for training and testing purposes. It allows users to test detection products, exploit tools, etc., by adding them to an Apache VirtualHost directive for testing purposes. Can be set up on UN*X + Apache + PHP, run as a Docker instance using the Dockerfile, or as a Vagrant instance using the Vagrantfile. Inspired by Jose Nazario, it provides useful links for LFI/RFI/CMD injection background.

FEATURES

ALTERNATIVES

Leading provider of free cybersecurity training resources

A workshop on hacking Bluetooth Smart locks, covering architecture, vulnerabilities, and exploitation techniques.

A wargame that challenges your hacking skills

A comprehensive guide to digital forensics and incident response, covering incident response frameworks, digital forensic techniques, and threat intelligence.

A detailed SSH cheat sheet for managing SSH connections and troubleshooting common issues.

Collection of cybersecurity conference videos recorded by Cooper (@Ministraitor)

One of the oldest hacker conventions in America, offering a unique and personal experience.

A series of vulnerable virtual machine images with documentation to teach Linux, Apache, PHP, MySQL security.