Command-Line Options

Basic Options

-u, --url	Target URL with FUZZ placeholder.
--post-data	POST request data containing FUZZ placeholder.
-w, --wordlist	Path to the wordlist file.
--method-type {GET,POST}	HTTP method to use for requests (default: GET).

Bypass & Obfuscation Options

--encode-url, --encode-double-url, --null-byte	Encode or obfuscate payload with URL encoding and null byte injection.
--directory-traversal-variations	Test common directory traversal variations for bypass.
--fuzz-param	Automatically fuzz common parameter names to identify vulnerable ones.

Authentication Options

--auth-user, --auth-pass, --auth-type	Credentials and authentication method (basic or NTLM).
--ntlm-domain	Domain name for NTLM authentication.

Session & Log Poisoning Options

--injection-string	PHP code string to inject for poisoning attacks.
--command	Command to execute after successful injection.
--log-file	Specify log file path for log poisoning.
--session-id	PHP session ID for session poisoning (manual injection required).

Full list of options

For a complete list of available options and detailed descriptions, run:

lfimap --help