LFI-Labs Logo

LFI-Labs

0
Free
Visit Website

A small set of PHP scripts designed for practicing exploiting LFI, RFI, and CMD injection vulnerabilities, primarily used for training and testing purposes. It allows users to test detection products, exploit tools, etc., by adding them to an Apache VirtualHost directive for testing purposes. Can be set up on UN*X + Apache + PHP, run as a Docker instance using the Dockerfile, or as a Vagrant instance using the Vagrantfile. Inspired by Jose Nazario, it provides useful links for LFI/RFI/CMD injection background.

FEATURES

ALTERNATIVES

Collection of recent infosec/hacking videos from conferences.

A vulnerable web application for learning about web application vulnerabilities and writing secure code.

Free online class for web security and hacking

Hands-on cybersecurity training and testing platform with 1800+ labs

A workshop offering resources for local privilege escalation on Windows and Linux systems.

Blue-team capture the flag competition for improving cybersecurity skills.

A collection of computer science courses with video lectures covering a wide range of topics.

A one-stop online resource for cybersecurity degree programs in the US, offering information on undergraduate and graduate levels, online programs, and career options.