LFI Suite

LSE toolsLSE toolsLFI Suite (212)LFI Suite (212)

Tool and Usage

Project details
Programming languagePython
Latest release1.13 []

Project health

This score is calculated by different factors, like project age, last release date, etc.

Why this tool?

This tool is a useful addition to the pentesting toolbox of security professionals. It can help discover and exploit any local file inclusion weakness in applications. Upon success, a reverse shell can be used to get access to the system.

Usage and audience

LFI Suite is commonly used for penetration testing or web application analysis. Target users for this tool are pentesters and security professionals.


  • Command line interface
  • Support for TOR

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:


  • + The source code of this software is available


  • - Full name of author is unknown

History and highlights

2018First public version (1.13) released on GitHub


Supported operating systems

LFI Suite is known to work on Linux, macOS, and Microsoft Windows.

LFI Suite alternatives

Similar tools to LFI Suite:


LFI Freak

LFI Freak is a tool to help finding and exploiting local file inclusions (LFI). It has a particular focus on using PHP Input, PHP Filter, and Data URI methods.



Nycto-dork is dork scanner that can also test for SQL injections and local file injections (LFI). It can be used during security assessments like a penetration test.



fimap is a tool written in Python to find, prepare, audit, exploit local and remote file inclusion bugs in web applications.

All LFI Suite alternatives

This tool page was updated at . Found an improvement? Help the community by submitting an update.