A Small Set of PHP Scripts for Vulnerability Exploitation Practice
This is a small collection of PHP scripts specifically created for practicing the exploitation of Local File Inclusion (LFI), Remote File Inclusion (RFI), and Command Injection (CMD) vulnerabilities. These scripts are primarily intended for training and testing purposes.
It enables users to test detection products and exploit tools
It enables users to test detection products, exploit tools, and more by integrating them into an Apache VirtualHost directive specifically for testing. This setup can be configured on UN*X systems with Apache and PHP, or it can be run as a Docker instance using the provided Dockerfile, or as a Vagrant instance using the Vagrantfile. Inspired by Jose Nazario, it also offers valuable links for understanding LFI (Local File Inclusion), RFI (Remote File Inclusion), and CMD (Command) injection.
