LFI-Labs Logo

LFI-Labs

0
Free
Visit Website

A small set of PHP scripts designed for practicing exploiting LFI, RFI, and CMD injection vulnerabilities, primarily used for training and testing purposes. It allows users to test detection products, exploit tools, etc., by adding them to an Apache VirtualHost directive for testing purposes. Can be set up on UN*X + Apache + PHP, run as a Docker instance using the Dockerfile, or as a Vagrant instance using the Vagrantfile. Inspired by Jose Nazario, it provides useful links for LFI/RFI/CMD injection background.

FEATURES

ALTERNATIVES

Enhance the security and privacy of Apple silicon Mac computers with incremental changes and user capability.

A comprehensive incident response and threat hunting tool for Google Cloud Platform, providing logs and forensic data for effective incident response and threat hunting.

Free online ethical hacking course covering penetration testing, web app assessments, exploit development, and security operations.

Hands-on cybersecurity training and testing platform with 1800+ labs

NodeGoat provides an environment to learn and address OWASP Top 10 security risks in Node.js web applications.

HTB Academy offers guided cybersecurity training with industry certifications to help you become a market-ready professional.

A guide on how to contribute to the Ayehu Custom Activities Repository

Cybersecurity training platform with courses, certifications, and study guides.

PINNED