jetlib.sec » Full Disclosure » Analysis of the "r00t 4 LFI Toolkit"

Feeds

133122 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

Full Disclosure

• February 19, 2012
• 

  Analysis of the "r00t 4 LFI Toolkit"

  Posted: February 19th, 2012, 9:02am PST

  Tags:   

  Posted by InterN0T Advisories on Feb 19

  Dear Full Disclosure readers,
  
  Today I saw Joe McCray among others, tweet about the (new) "r00t 4 LFI
  Toolkit", that according to its description:
  -------------------------------------------
  This tool is a php script that assists in performing local file inclusion
  attacks.
  -------------------------------------------
  
  -:: Overview ::-
  
  After studying this tool for a brief 5 minutes, it was obvious that it was
  nowhere what I hoped it to...