Skip to content
/ lazyParam Public
forked from aniqfakhrul/lazyParam

A simple automation tool to detect LFI, RCE and SSTI vulnerability. Forked for PR and customization

1 star 6 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

storenth/lazyParam

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits

cores

cores

 
 

db

db

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

lazyparam.py

lazyparam.py

 
 

Repository files navigation

What is lazyParam?

lazyParam is a simple automation tool with implementation of multi-threading created by us @aniqfakhrul, @h0j3n and @a_m1rz for checking hidden parameters in a page. This tool is still in testing phase and more implementations are soon to be made. note: Works with python3

Features

  • Fuzz parameters for both GET and POST method
  • Multi-threaded (Default: 4)
  • Use intensive mode with characters bypassing techniques (beta)
  • Check for LFI, RCE and SSTI

Todo

  • XSS checking

Usage

Fuzz parameters with build in wordlists

python3 lazyparam.py -u http://example.com/file.php

Specify custom wordlist

python3 lazyparam.py -u http://example.com/file.php -w wordlists.lst

About

A simple automation tool to detect LFI, RCE and SSTI vulnerability. Forked for PR and customization

Topics

ssti lfi-detection

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%