testing and exploiting with fimap
来源:exploit-db.com
Title : LFI/RFI testing and exploiting with fimap
Autor : Iman Karim (ikarim2s[YOUKNOW]smail.inf.fh-brs.de)
Date : 3. September 2009
Project: http://fimap.googlecode.com
fimap is currently under development but still usable. Feel free to test it!
This document and tool is not recommend for people who doesn’t know what LFI/RFI is.
If you know what it is, it might be a handy tool for you.
Table of Contents
0. Introduction
[a] What is fimap?
[b] Let’s go.
1. Single URL Scan