Go Back   Carder.life > [en] International Forum > Flooding & Offtopic
Reload this Page 1-Liner to find LFI (Local File Inclusion) Vulnerabilities

CARDER.MARKET - CARDING FORUM FOR PROFESSIONAL CARDERS


Reply
 
Thread Tools Display Modes
  #1  
Old 02-18-2025, 11:18 PM
Vipgift19's Avatar

Vipgift19 Vipgift19 is offline
Join Date: Mar 2024
Posts: 0
Default

This one-liner will allow you to find LFI vulnerabilities on multiple URLs. Utilizing 'paramspider' to collect URL parameters from web archives, importing them to 'ffuf' for fuzzing while using an external wordlist dictionary.
The following tools are required:
https://github.com/devanshbatham/ParamSpider
https://github.com/ffuf/ffuf
Example:
python3 paramspider.py -d testphp.vulnweb.com -o urls.txt | for URL in $(</root/Tools/ParamSpider/output/urls.txt); do (ffuf -u "$<URL}" -c -w /root/FUZZB/SecLists/sts/Fuzzing/LFI/LFI-Jhaddix.txt -ac); done
Reply

Tags
NULL

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Forum Jump




All times are GMT. The time now is 08:27 AM.

Contact Us - Carder.life - Archive - Top