Local File Inclusion Scanner and Exploiter

Features 1- Scanner

2- Exploiter

Exploiter Attack Vectors:

1- /proc/self/environ

2- /var/log/auth.log

3- Apache Log Poisoning

4- php://input

5- Php Sessions and Cookies

6- Data Wrapper

7- SMTP Poisoning

8- All attacks in one

Installation

• git clone https://github.com/S12cybersecurity/LFI-Paradise/
• cd LFI-Paradise
• pip3 install pyfiglet
• pip3 install SimpleTelnetMail

Usage

• python3 lfi.paradise.py