LFI / RFI

Interesting Files for LFI

Local File Inclusion

Linux

/etc/passwd
/etc/shadow
/etc/issue
/etc/group
/etc/hostname

# Log Files
/var/log/apache/access.log
/var/log/apache2/access.log
/var/log/httpd/access_log
/var/log/apache/error.log
/var/log/apache2/error.log
/var/log/httpd/error_log
/var/log/messages
/var/log/cron.log
/var/log/auth.log

/var/www/html/wp-config.php                <-- Wordpress
/var/www/configuration.php                 <-- Joomla
/var/www/html/inc/header.inc.php           <-- Dolphin
/var/www/html/sites/default/settings.php   <-- Drupal
/var/www/configuration.php                 <-- Mambo
/var/www/config.php                        <-- PHP

Windows

php://filter

Remote File Inclusion

PreviousSQL Injection PayloadsNextRecover contents

Last updated

Was this helpful?