2018-06-18 05:28 UTC

View Issue Details Jump to Notes ]
IDProjectCategoryView StatusLast Update
0002200Kali Linux[All Projects] New Tool Requestspublic2018-05-04 00:24
Reporterangus young 
Assigned To 
PrioritynormalSeverityminorReproducibilityN/A
StatusnewResolutionopen 
Product Version 
Target VersionFixed in Version 
Summary0002200: Kadimus - LFI Scan & Exploit Tool
DescriptionKadimus is a tool to check sites to lfi vulnerability , and also exploit it

Features:

 Check all url parameters
 /var/log/auth.log RCE
 /proc/self/environ RCE
 php://input RCE
 data://text RCE
 Source code disclosure
 Multi thread scanner
 Command shell interface through HTTP Request
 Proxy support (socks4://, socks4a://, socks5:// ,socks5h:// and http://)
 Proxy socks5 support for bind connections

Project link: https://github.com/P0cL4bs/Kadimus
Attached Files

-Relationships
+Relationships

-Notes

~0003609

stormtide (reporter)

Installation :
--------------
git clone https://github.com/P0cL4bs/Kadimus.git
cd Kadimus

./configure (you can not rely on this output)

apt-get install libcurl4-openssl-dev
apt-get install libssh-dev

make

./kadimus -h
(the tool works)

~0008545

g0tmi1k (administrator)

To help speed up the process of evaluating the tool, please make sure to include the following information (the more information you include, the more beneficial it will for us):

- [Name] - The name of the tool
- [Version] - What version of the tool should be added?
--- If it uses source control (such as git), please make sure there is a release to match (e.g. git tag)
- [Homepage] - Where can the tool be found online? Where to go to get more information?
- [Download] - Where to go to get the tool?
- [Author] - Who made the tool?
- [Licence] - How is the software distributed? What conditions does it come with?
- [Description] - What is the tool about? What does it do?
- [Dependencies] - What is needed for the tool to work?
- [Similar tools] - What other tools are out there?
- [How to install] - How do you compile it?
- [How to use] - What are some basic commands/functions to demonstrate it?

~0008912

coloboslexx (reporter)

- [Name] - Kadimus
- [Version] - The latest available
- [Homepage] - https://github.com/P0cL4bs/Kadimus
- [Download] - https://github.com/P0cL4bs/Kadimus
- [Author] - P0cL4bs
- [Licence] - MIT License
- [Description] - Kadimus is a tool to check sites to lfi vulnerability , and also exploit it
- [Dependencies] - libcurl, libpcre, libssh
- [Similar tools] - fimap
- [How to install] - make
- [How to use] - What are some basic commands/functions to demonstrate it?
Options and examples:

Cannot add due to WAF limitations.
+Notes

-Issue History
Date Modified Username Field Change
2015-04-05 19:40 angus young New Issue
2015-07-28 12:57 stormtide Note Added: 0003609
2018-01-29 17:48 g0tmi1k Note Added: 0008545
2018-03-13 07:50 coloboslexx Note Added: 0008912
2018-03-13 10:51 g0tmi1k Note Added: 0008919
2018-03-13 10:56 coloboslexx Note Added: 0008921
2018-05-03 23:50 g0tmi1k Note Deleted: 0008919
2018-05-03 23:55 g0tmi1k Note Deleted: 0008921
+Issue History