Based on a list of payloads, XFI evaluate Local and Remote file inclusion on target web server
-
Updated
Jun 29, 2024 - Python
#
rfi-vulnerabillity
Here are 4 public repositories matching this topic...
Collection of RFI Vulnerability scenarios (challenges) each containing a new bypass technique.
security hacking owasp penetration-testing application-security rfi owasp-top-10 owasp-top-ten rfi-labs app-security remote-file-inclusion rfi-vulnerabillity rfi-exploitation rfi-exploit rfi-scenario rfi-challenge
-
Updated
May 25, 2022 - PHP
A Docker-based security testing setup featuring a vulnerable web service, a filtering HTTP proxy ("bridge"), and an attacker client. Demonstrates vulnerability exploitation (e.g., SQL injection) and programmatic mitigation through dynamic proxy filtering.
security lua waf sql-injection xss-vulnerability command-injection lfi-vulnerability rfi-vulnerabillity
-
Updated
Jun 26, 2025 - Lua
Web application VAPT project demonstrating detection and mitigation of LFI/RFI vulnerabilities using OWASP ZAP, Kali Linux, and Metasploitable with OWASP-aligned secure coding defenses.
-
Updated
Jan 18, 2026 - PHP
Improve this page
Add a description, image, and links to the rfi-vulnerabillity topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the rfi-vulnerabillity topic, visit your repo's landing page and select "manage topics."