skip to navigation
skip to content

lfi_url_encoding 1.0.1

A tool to encode URLs for LFI vulnerability.

# LFI URL Encoding

A tool to encode URLs for LFI vulnerability.

**Note**: this tool does not intend to encode all ASCII or UTF-8 characters but only those which are usefull for LFI testing.

## Requirements

This software was designed for Python 3, it mays work under Python 2.

This software was tested with Python 3.4.1 and 3.5.2.

This software uses those python libraries:
- [argparse](

## Usage

usage: [-h] (-s <string> | -d <string>) [-a] [-n]

LFI-encoding - Encoding url for LFI

optional arguments:
-h, --help show this help message and exit
-s <string>, --simple <string>
Simple encoding
-d <string>, --double <string>
Double encoding
-a, --advanced Advanced encoding ('&', '+', '=')
-n, --null_byte Append a null byte

## Examples

Simple encoding:
./ -s ../../../../etc/passwd

Double encoding:
./ -d ../../../../etc/passwd

Null byte:
./ -s ../../etc/passwd -n

Advanced encoding vs normal:
./ -s 'context=config&' -a

./ -s 'context=config&'

## Install

- **Online**: run `pip install lfi_url_encoding`
- **Offline**:
+ Download [the archive](
+ Unpack the archive
+ Go into the folder and run `python install`
File Type Py Version Uploaded on Size
lfi_url_encoding-1.0.1.tar.gz (md5) Source 2016-07-27 15KB