⚠️ Early-stage variant of YA-LFI by Apollyon

▄██   ▄      ▄████████           ▄█          ▄████████  ▄█  
███   ██▄   ███    ███          ███         ███    ███ ███  
███▄▄▄███   ███    ███          ███         ███    █▀  ███▌ 
▀▀▀▀▀▀███   ███    ███  ██████  ███        ▄███▄▄▄     ███▌ 
▄██   ███ ▀███████████  ██████  ███       ▀▀███▀▀▀     ███▌ 
███   ███   ███    ███          ███         ███        ███  
███   ███   ███    ███          ███▌    ▄   ███        ███  
 ▀█████▀    ███    █▀           █████▄▄██   ███        █▀

Yet another - local file inclusion scanner

By: Apollyon, azuk4r

Based on: LFIScanner by R3LI4NT

Commands

COMMAND	DESCRIPTION
-h / --help	Request help
-u / --url	Target Website
-ulist / --url_list	Target multiple websites from file
-wiz / --wizard	Wizard for new users
-p / --payload	Payload file
-e / --extract	Extract content
-t / --threads	Multi threaded scanning
-pr / --proxy	Using proxies (HTTP, HTTPS, SOCKS)
-tr / --tor	Use Tor for connections with separate instances per thread
-rotate / --tor-rotation	Rotate Tor IP after N requests (requires --tor and int)
-auth / --authentication	Authentication using headers and/or cookies
-save / --save_to_file	Saves valid payloads to file on disk

Installation

Normal

git clone https://github.com/0x-Apollyon/YA-LFI.git
cd YA-LFI
pip install -r requirements.txt

Using virtual environment (Arch based linux distros)

git clone https://github.com/0x-Apollyon/YA-LFI.git
cd YA-LFI
python -m venv venv
source venv/bin/activate
pip install -r requirements.txt

Usage

You can run it using commands given below or use the wizard

View help

python LFIscanner.py -h

Default usage

python LFIscanner.py -u https://example.com?param= -p all_os.txt

Using with wizard

python LFIscanner.py -wiz

Linux wordlist

python LFIscanner.py -u https://example.com?param= -p linux.txt

Windows wordlist

python LFIscanner.py -u https://example.com?param= -p windows.txt

WARNING: DO NOT RUN WITHOUT A PARAMETER IN THE URL

Other amazing third party wordlists

Linux wordlist
Windows wordlist

Most common parameters

?cat={payload}
?dir={payload}
?action={payload}
?board={payload}
?date={payload}
?detail={payload}
?file={payload}
?download={payload}
?path={payload}
?folder={payload}
?prefix={payload}
?include={payload}
?page={payload}
?inc={payload}
?locate={payload}
?show={payload}
?doc={payload}
?site={payload}
?type={payload}
?view={payload}
?content={payload}
?document={payload}
?layout={payload}
?mod={payload}
?conf={payload}

Source

Name		Name	Last commit message	Last commit date
Latest commit History 33 Commits
LFIscanner.py		LFIscanner.py
README.md		README.md
all_os.txt		all_os.txt
auth.json		auth.json
files.txt		files.txt
linux.txt		linux.txt
open_custom.py		open_custom.py
requirements.txt		requirements.txt
tor_manager.py		tor_manager.py
windows.txt		windows.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

⚠️ Early-stage variant of YA-LFI by Apollyon

Yet another - local file inclusion scanner

By: Apollyon, azuk4r

Based on: LFIScanner by R3LI4NT

Commands

Installation

Usage

Other amazing third party wordlists

Most common parameters

About

Releases

Packages

Languages

azuk4r/YA-LFI

Folders and files

Latest commit

History

Repository files navigation

⚠️ Early-stage variant of YA-LFI by Apollyon

Yet another - local file inclusion scanner

By: Apollyon, azuk4r

Based on: LFIScanner by R3LI4NT

Commands

Installation

Usage

Other amazing third party wordlists

Most common parameters

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages