LSE toolsLSE toolsfimap (259)fimap (259)

Tool and Usage

Project details
Programming languagePython
AuthorIman Karim
Latest releaseNo release found

Project health

This score is calculated by different factors, like project age, last release date, etc.

Why this tool?

Fimap has the ability to search and exploit local (LFI) and remote (RFI) file inclusions bugs. It also can leverage Google during its usage.

Usage and audience

fimap is commonly used for penetration testing or web application analysis. Target users for this tool are pentesters and security professionals.


  • Command line interface

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:


  • + The source code of this software is available

Author and Maintainers

Fimap is under development by Iman Karim.


Supported operating systems

Fimap is known to work on Linux.

fimap alternatives

Similar tools to fimap:


LFI Freak

LFI Freak is a tool to help finding and exploiting local file inclusions (LFI). It has a particular focus on using PHP Input, PHP Filter, and Data URI methods.


LFI Suite

LFI Suite is a security tool to automate the scanning and exploitation of Local File Inclusion vulnerabilities. It uses a wide range of attack methods to achieve this goal. This tool would be useful to penetration testers for security assignments.



Nycto-dork is dork scanner that can also test for SQL injections and local file injections (LFI). It can be used during security assessments like a penetration test.

All fimap alternatives

Found an improvement? Help the community by submitting an update.

Related tool information


This tool is categorized as a LFI discovery tool and LFI exploitation tool.