fuzzdb/attack/rfi
2015-09-15 22:26:43 -04:00
..
README.md formatting 2015-09-15 22:26:43 -04:00
rfi.fuzz.txt doc relocation and renaming update 2015-09-11 19:39:11 -04:00

rfi.fuzz.txt

Remote File Include scanning

Compiled by RSnake 02/01/2010

Mostly from milw0rm osvdb.org and elsewhere

Change XXpathXX to the path of your backdoor.
Note that you may need to try it against every directory on the target and because of how this was culled you may need to add a question mark to your own XXpathXX URL:

XXpathXX => http://www.example.com/hax.txt?

see fuzzdb docs:

/docs/attack-docs/rfi-cheatsheet.html

Other tools:

fimap http://code.google.com/p/fimap/