Tool and Usage
|Latest release||1.13 |
Why this tool?
This tool is a useful addition to the pentesting toolbox of security professionals. It can help discover and exploit any local file inclusion weakness in applications. Upon success, a reverse shell can be used to get access to the system.
Usage and audience
LFI Suite is commonly used for penetration testing or web application analysis. Target users for this tool are pentesters and security professionals.
- Command line interface
- Support for TOR
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + The source code of this software is available
- - Full name of author is unknown
History and highlights
|2018||First public version (1.13) released on GitHub|
Supported operating systems
LFI Suite is known to work on Linux, macOS, and Microsoft Windows.
LFI Suite alternatives
Similar tools to LFI Suite:
LFI Freak is a tool to help finding and exploiting local file inclusions (LFI). It has a particular focus on using PHP Input, PHP Filter, and Data URI methods.
Nycto-dork is dork scanner that can also test for SQL injections and local file injections (LFI). It can be used during security assessments like a penetration test.
fimap is a tool written in Python to find, prepare, audit, exploit local and remote file inclusion bugs in web applications.
This tool page was updated at . Found an improvement? Help the community by submitting an update.