How to Exploit a Remote File Inclusion (RFI)
Practical guide on RFI vulnerability: how to exploit Remote File Inclusion to execute remote code by including malicious files from an external server.
Feb 11, 2022 Juan Antonio González Mena
Web
13 articles
How to Exploit a Local File Inclusion (LFI)
Complete guide on LFI vulnerability: exploitation techniques, bypasses, and methods to convert a Local File Inclusion into remote command execution.
Feb 7, 2022 Juan Antonio González Mena
Exploiting PHP Wrappers
Complete guide on exploiting PHP Wrappers in web vulnerabilities, including techniques with php://filter, zip://, data://, php://input and expect:// for LFI and XXE.
Feb 4, 2022 Juan Antonio González Mena
How to Exploit the Shellshock Attack
Explanation of the Shellshock vulnerability (CVE-2014-6271), its origin, how it works, and how to exploit it remotely to achieve command execution on web servers.
Jan 31, 2022 Juan Antonio González Mena