Local file inclusion vulnerability detection tools – Burp the domestic plug-in LFI scanner checks-vulnerability warning-the black bar safety net

2015-08-17T00:00:00
ID MYHACK58:62201565842
Type myhack58
Reporter 佚名
Modified 2015-08-17T00:00:00

Description

LFI scanner checks to myself to burp the lightweight scanner to do a detect a LFI vulnerability plug-ins, because burp is not an effective detection of the LFI feature, only to write yourself a plugin. Look at the following screenshot: ! To compare the following J2EESCAN inside the included LFI detection ! ! The following is installed on the LFI scanner checks ! I use the payload as follows ../../../../../../../../../../../../../../../../etc/passwd%00.html ../../../../../../../../../../../../../../../../etc/passwd file:///etc/passwd file:///c:/windows/win. ini ../../../../../../../../../../../../../../../../windows/win. ini ../../../../../../../../../../../../../../../../windows/win.ini%00.html If there are good suggestions in the comments give me a shout ! Download address Links: http://pan.baidu.com/s/1gdfITIN password: 4fv7 Note: Please self-detection program security