LFI Space Tool: Your Comprehensive Solution for Detecting LFI Vulnerabilities
The LFI Space Tool serves as an all-inclusive resource meticulously engineered to pinpoint local file inclusion (LFI) vulnerabilities within web applications, particularly utilizing LFI dorks.
This tool simplifies the identification of potential security weaknesses through two distinct spotting techniques: combing through Google dorks and targeting URLs from a list you provide.
Below are some examples of these dorks (you’re welcome to append your custom entries):
inurl:/filedown.php?file=
inurl:/news.php?include=
inurl:/view/lang/index.php?page=?page=
inurl:/shared/help.php?page=
inurl:/include/footer.inc.php?_AMLconfig[cfg_serverpath]=
inurl:/squirrelcart/cart_content.php?cart_isp_root=
inurl:index2.php?to=
inurl:index.php?load=
inurl:home.php?pagina=
/surveys/survey.inc.php?path=
index.php?body=
/classes/adodbt/sql.php?classes_dir=
enc/content.php?Home_Path=Whether you’re a cybersecurity expert, a penetration tester, an ethical hacker, or a developer seeking to promptly evaluate your web application’s security, the LFI Space Tool offers an ideal entry point into this realm. However, it’s important to acknowledge that while it provides valuable insights, it isn’t an all-encompassing solution.
For installation, access your terminal and execute the following commands:
git clone https://github.com/capture0x/Lfi-Space/
cd Lfi-Space pip3 install -r requirements.txt
Next, initiate the script:
python3 lfi.pyLFI Space Tool proves to be an indispensable asset for enhancing the security of your web applications. Remember, it doesn’t replace the power of critical thinking, so refrain from relying solely on it.
Explore more here:
