{"id":151,"date":"2021-04-24T04:18:25","date_gmt":"2021-04-24T04:18:25","guid":{"rendered":"https:\/\/sirensecurity.io\/blog\/?p=151"},"modified":"2021-07-15T03:04:42","modified_gmt":"2021-07-15T03:04:42","slug":"file-inclusion-reference","status":"publish","type":"post","link":"https:\/\/sirensecurity.io\/blog\/file-inclusion-reference\/","title":{"rendered":"File Inclusion Reference."},"content":{"rendered":"\n
\"\"
\n

S1REN<\/p>\n\n\n\n

Linux & Windows File Inclusion. (LFI<\/strong>)<\/p>\n<\/div><\/div>\n\n\n\n

================================================================================\n[+ LINUX FILE INCLUSIONS ]<\/strong>\n\/etc\/passwd\n\/etc\/shadow\n\/etc\/aliases\n\/etc\/anacrontab\n\/etc\/apache2\/apache2.conf\n\/etc\/apache2\/httpd.conf\n\/etc\/at.allow\n\/etc\/at.deny\n\/etc\/bashrc\n\/etc\/bootptab\n\/etc\/chrootUsers\n\/etc\/chttp.conf\n\/etc\/cron.allow\n\/etc\/cron.deny\n\/etc\/crontab\n\/etc\/cups\/cupsd.conf\n\/etc\/exports\n\/etc\/fstab\n\/etc\/ftpaccess\n\/etc\/ftpchroot\n\/etc\/ftphosts\n\/etc\/groups\n\/etc\/grub.conf\n\/etc\/hosts\n\/etc\/hosts.allow\n\/etc\/hosts.deny\n\/etc\/httpd\/access.conf\n\/etc\/httpd\/conf\/httpd.conf\n\/etc\/httpd\/httpd.conf\n\/etc\/httpd\/logs\/access_log\n\/etc\/httpd\/logs\/access.log\n\/etc\/httpd\/logs\/error_log\n\/etc\/httpd\/logs\/error.log\n\/etc\/httpd\/php.ini\n\/etc\/httpd\/srm.conf\n\/etc\/inetd.conf\n\/etc\/inittab\n\/etc\/issue\n\/etc\/lighttpd.conf\n\/etc\/lilo.conf\n\/etc\/logrotate.d\/ftp\n\/etc\/logrotate.d\/proftpd\n\/etc\/logrotate.d\/vsftpd.log\n\/etc\/lsb-release\n\/etc\/motd\n\/etc\/modules.conf\n\/etc\/motd\n\/etc\/mtab\n\/etc\/my.cnf\n\/etc\/my.conf\n\/etc\/mysql\/my.cnf\n\/etc\/network\/interfaces\n\/etc\/networks\n\/etc\/npasswd\n\/etc\/passwd\n\/etc\/php4.4\/fcgi\/php.ini\n\/etc\/php4\/apache2\/php.ini\n\/etc\/php4\/apache\/php.ini\n\/etc\/php4\/cgi\/php.ini\n\/etc\/php4\/apache2\/php.ini\n\/etc\/php5\/apache2\/php.ini\n\/etc\/php5\/apache\/php.ini\n\/etc\/php\/apache2\/php.ini\n\/etc\/php\/apache\/php.ini\n\/etc\/php\/cgi\/php.ini\n\/etc\/php.ini\n\/etc\/php\/php4\/php.ini\n\/etc\/php\/php.ini\n\/etc\/printcap\n\/etc\/profile\n\/etc\/proftp.conf\n\/etc\/proftpd\/proftpd.conf\n\/etc\/pure-ftpd.conf\n\/etc\/pureftpd.passwd\n\/etc\/pureftpd.pdb\n\/etc\/pure-ftpd\/pure-ftpd.conf\n\/etc\/pure-ftpd\/pure-ftpd.pdb\n\/etc\/pure-ftpd\/putreftpd.pdb\n\/etc\/redhat-release\n\/etc\/resolv.conf\n\/etc\/samba\/smb.conf\n\/etc\/snmpd.conf\n\/etc\/ssh\/ssh_config\n\/etc\/ssh\/sshd_config\n\/etc\/ssh\/ssh_host_dsa_key\n\/etc\/ssh\/ssh_host_dsa_key.pub\n\/etc\/ssh\/ssh_host_key\n\/etc\/ssh\/ssh_host_key.pub\n\/etc\/sysconfig\/network\n\/etc\/syslog.conf\n\/etc\/termcap\n\/etc\/vhcs2\/proftpd\/proftpd.conf\n\/etc\/vsftpd.chroot_list\n\/etc\/vsftpd.conf\n\/etc\/vsftpd\/vsftpd.conf\n\/etc\/wu-ftpd\/ftpaccess\n\/etc\/wu-ftpd\/ftphosts\n\/etc\/wu-ftpd\/ftpusers\n\/logs\/pure-ftpd.log\n\/logs\/security_debug_log\n\/logs\/security_log\n\/opt\/lampp\/etc\/httpd.conf\n\/opt\/xampp\/etc\/php.ini\n\/proc\/cpuinfo\n\/proc\/filesystems\n\/proc\/interrupts\n\/proc\/ioports\n\/proc\/meminfo\n\/proc\/modules\n\/proc\/mounts\n\/proc\/stat\n\/proc\/swaps\n\/proc\/version\n\/proc\/self\/net\/arp\n\/root\/anaconda-ks.cfg\n\/usr\/etc\/pure-ftpd.conf\n\/usr\/lib\/php.ini\n\/usr\/lib\/php\/php.ini\n\/usr\/local\/apache\/conf\/modsec.conf\n\/usr\/local\/apache\/conf\/php.ini\n\/usr\/local\/apache\/log\n\/usr\/local\/apache\/logs\n\/usr\/local\/apache\/logs\/access_log\n\/usr\/local\/apache\/logs\/access.log\n\/usr\/local\/apache\/audit_log\n\/usr\/local\/apache\/error_log\n\/usr\/local\/apache\/error.log\n\/usr\/local\/cpanel\/logs\n\/usr\/local\/cpanel\/logs\/access_log\n\/usr\/local\/cpanel\/logs\/error_log\n\/usr\/local\/cpanel\/logs\/license_log\n\/usr\/local\/cpanel\/logs\/login_log\n\/usr\/local\/cpanel\/logs\/stats_log\n\/usr\/local\/etc\/httpd\/logs\/access_log\n\/usr\/local\/etc\/httpd\/logs\/error_log\n\/usr\/local\/etc\/php.ini\n\/usr\/local\/etc\/pure-ftpd.conf\n\/usr\/local\/etc\/pureftpd.pdb\n\/usr\/local\/lib\/php.ini\n\/usr\/local\/php4\/httpd.conf\n\/usr\/local\/php4\/httpd.conf.php\n\/usr\/local\/php4\/lib\/php.ini\n\/usr\/local\/php5\/httpd.conf\n\/usr\/local\/php5\/httpd.conf.php\n\/usr\/local\/php5\/lib\/php.ini\n\/usr\/local\/php\/httpd.conf\n\/usr\/local\/php\/httpd.conf.ini\n\/usr\/local\/php\/lib\/php.ini\n\/usr\/local\/pureftpd\/etc\/pure-ftpd.conf\n\/usr\/local\/pureftpd\/etc\/pureftpd.pdn\n\/usr\/local\/pureftpd\/sbin\/pure-config.pl\n\/usr\/local\/www\/logs\/httpd_log\n\/usr\/local\/Zend\/etc\/php.ini\n\/usr\/sbin\/pure-config.pl\n\/var\/adm\/log\/xferlog\n\/var\/apache2\/config.inc\n\/var\/apache\/logs\/access_log\n\/var\/apache\/logs\/error_log\n\/var\/cpanel\/cpanel.config\n\/var\/lib\/mysql\/my.cnf\n\/var\/lib\/mysql\/mysql\/user.MYD\n\/var\/local\/www\/conf\/php.ini\n\/var\/log\/apache2\/access_log\n\/var\/log\/apache2\/access.log\n\/var\/log\/apache2\/error_log\n\/var\/log\/apache2\/error.log\n\/var\/log\/apache\/access_log\n\/var\/log\/apache\/access.log\n\/var\/log\/apache\/error_log\n\/var\/log\/apache\/error.log\n\/var\/log\/apache-ssl\/access.log\n\/var\/log\/apache-ssl\/error.log\n\/var\/log\/auth.log\n\/var\/log\/boot\n\/var\/htmp\n\/var\/log\/chttp.log\n\/var\/log\/cups\/error.log\n\/var\/log\/daemon.log\n\/var\/log\/debug\n\/var\/log\/dmesg\n\/var\/log\/dpkg.log\n\/var\/log\/exim_mainlog\n\/var\/log\/exim\/mainlog\n\/var\/log\/exim_paniclog\n\/var\/log\/exim.paniclog\n\/var\/log\/exim_rejectlog\n\/var\/log\/exim\/rejectlog\n\/var\/log\/faillog\n\/var\/log\/ftplog\n\/var\/log\/ftp-proxy\n\/var\/log\/ftp-proxy\/ftp-proxy.log\n\/var\/log\/httpd-access.log\n\/var\/log\/httpd\/access_log\n\/var\/log\/httpd\/access.log\n\/var\/log\/httpd\/error_log\n\/var\/log\/httpd\/error.log\n\/var\/log\/httpsd\/ssl.access_log\n\/var\/log\/httpsd\/ssl_log\n\/var\/log\/kern.log\n\/var\/log\/lastlog\n\/var\/log\/lighttpd\/access.log\n\/var\/log\/lighttpd\/error.log\n\/var\/log\/lighttpd\/lighttpd.access.log\n\/var\/log\/lighttpd\/lighttpd.error.log\n\/var\/log\/mail.info\n\/var\/log\/mail.log\n\/var\/log\/maillog\n\/var\/log\/mail.warn\n\/var\/log\/message\n\/var\/log\/messages\n\/var\/log\/mysqlderror.log\n\/var\/log\/mysql.log\n\/var\/log\/mysql\/mysql-bin.log\n\/var\/log\/mysql\/mysql.log\n\/var\/log\/mysql\/mysql-slow.log\n\/var\/log\/proftpd\n\/var\/log\/pureftpd.log\n\/var\/log\/pure-ftpd\/pure-ftpd.log\n\/var\/log\/secure\n\/var\/log\/vsftpd.log\n\/var\/log\/wtmp\n\/var\/log\/xferlog\n\/var\/log\/yum.log\n\/var\/mysql.log\n\/var\/run\/utmp\n\/var\/spool\/cron\/crontabs\/root\n\/var\/webmin\/miniserv.log\n\/var\/www\/log\/access_log\n\/var\/www\/log\/error_log\n\/var\/www\/logs\/access_log\n\/var\/www\/logs\/error_log\n\/var\/www\/logs\/access.log\n\/var\/www\/logs\/error.log\n~\/.atfp_history\n~\/.bash_history\n~\/.bash_logout\n~\/.bash_profile\n~\/.bashrc\n~\/.gtkrc\n~\/.login\n~\/.logout\n~\/.mysql_history\n~\/.nano_history\n~\/.php_history\n~\/.profile\n~\/.ssh\/authorized_keys\n~\/.ssh\/id_dsa\n~\/.ssh\/id_dsa.pub\n~\/.ssh\/id_rsa\n~\/.ssh\/id_rsa.pub\n~\/.ssh\/identity\n~\/.ssh\/identity.pub\n~\/.viminfo\n~\/.wm_style\n~\/.Xdefaults\n~\/.xinitrc\n~\/.Xresources\n~\/.xsession\n\n================================================================================\n[+ WINDOWS FILE INCLUSIONS ]<\/strong>\nC:\/Users\/Administrator\/NTUser.dat\nC:\/Documents and Settings\/Administrator\/NTUser.dat\nC:\/apache\/logs\/access.log\nC:\/apache\/logs\/error.log\nC:\/apache\/php\/php.ini\nC:\/boot.ini\nC:\/inetpub\/wwwroot\/global.asa\nC:\/MySQL\/data\/hostname.err\nC:\/MySQL\/data\/mysql.err\nC:\/MySQL\/data\/mysql.log\nC:\/MySQL\/my.cnf\nC:\/MySQL\/my.ini\nC:\/php4\/php.ini\nC:\/php5\/php.ini\nC:\/php\/php.ini\nC:\/Program Files\/Apache Group\/Apache2\/conf\/httpd.conf\nC:\/Program Files\/Apache Group\/Apache\/conf\/httpd.conf\nC:\/Program Files\/Apache Group\/Apache\/logs\/access.log\nC:\/Program Files\/Apache Group\/Apache\/logs\/error.log\nC:\/Program Files\/FileZilla Server\/FileZilla Server.xml\nC:\/Program Files\/MySQL\/data\/hostname.err\nC:\/Program Files\/MySQL\/data\/mysql-bin.log\nC:\/Program Files\/MySQL\/data\/mysql.err\nC:\/Program Files\/MySQL\/data\/mysql.log\nC:\/Program Files\/MySQL\/my.ini\nC:\/Program Files\/MySQL\/my.cnf\nC:\/Program Files\/MySQL\/MySQL Server 5.0\/data\/hostname.err\nC:\/Program Files\/MySQL\/MySQL Server 5.0\/data\/mysql-bin.log\nC:\/Program Files\/MySQL\/MySQL Server 5.0\/data\/mysql.err\nC:\/Program Files\/MySQL\/MySQL Server 5.0\/data\/mysql.log\nC:\/Program Files\/MySQL\/MySQL Server 5.0\/my.cnf\nC:\/Program Files\/MySQL\/MySQL Server 5.0\/my.ini\nC:\/Program Files (x86)\/Apache Group\/Apache2\/conf\/httpd.conf\nC:\/Program Files (x86)\/Apache Group\/Apache\/conf\/httpd.conf\nC:\/Program Files (x86)\/Apache Group\/Apache\/conf\/access.log\nC:\/Program Files (x86)\/Apache Group\/Apache\/conf\/error.log\nC:\/Program Files (x86)\/FileZilla Server\/FileZilla Server.xml\nC:\/Program Files (x86)\/xampp\/apache\/conf\/httpd.conf\nC:\/WINDOWS\/php.ini\nC:\/WINDOWS\/repair\/SAM\nC:\/WINDOWS\/repair\/SYSTEM\nC:\/Windows\/System32\/Config\/SAM\nC:\/Windows\/System32\/Config\/SYSTEM\nC:\/Windows\/repair\/system\nC:\/Windows\/repair\/software\nC:\/Windows\/repair\/security\nC:\/WINDOWS\/System32\/drivers\/etc\/hosts\nC:\/Windows\/win.ini\nC:\/WINNT\/php.ini\nC:\/WINNT\/win.ini\nC:\/xampp\/apache\/bin\/php.ini\nC:\/xampp\/apache\/logs\/access.log\nC:\/xampp\/apache\/logs\/error.log\nC:\/Windows\/Panther\/Unattend\/Unattended.xml\nC:\/Windows\/Panther\/Unattended.xml\nC:\/Windows\/debug\/NetSetup.log\nC:\/Windows\/system32\/config\/AppEvent.Evt\nC:\/Windows\/system32\/config\/SecEvent.Evt\nC:\/Windows\/system32\/config\/default.sav\nC:\/Windows\/system32\/config\/security.sav\nC:\/Windows\/system32\/config\/software.sav\nC:\/Windows\/system32\/config\/system.sav\nC:\/Windows\/system32\/config\/regback\/default\nC:\/Windows\/system32\/config\/regback\/sam\nC:\/Windows\/system32\/config\/regback\/security\nC:\/Windows\/system32\/config\/regback\/system\nC:\/Windows\/system32\/config\/regback\/software\nC:\/Program Files\/MySQL\/MySQL Server 5.1\/my.ini\nC:\/Windows\/System32\/inetsrv\/config\/schema\/ASPNET_schema.xml\nC:\/Windows\/System32\/inetsrv\/config\/applicationHost.config\nC:\/inetpub\/logs\/LogFiles\/W3SVC1\/u_ex[YYMMDD].log\n================================================================================\n<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"
Those mountains look very pretty.<\/p>\n","protected":false},"author":1,"featured_media":91,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[3,4],"class_list":["post-151","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-s1ren","tag-local-file-inclusion","tag-s1ren"],"_links":{"self":[{"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/posts\/151","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/comments?post=151"}],"version-history":[{"count":5,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/posts\/151\/revisions"}],"predecessor-version":[{"id":421,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/posts\/151\/revisions\/421"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/media\/91"}],"wp:attachment":[{"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/media?parent=151"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/categories?post=151"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/tags?post=151"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}