Available Plugins¶
Bypass Plugins (Selected Examples)¶
403 |
Attempts to bypass HTTP 403 Forbidden responses using various techniques. |
xforwardedfor |
Adds spoofed X-Forwarded-For headers to manipulate server filtering. |
comment-trick |
Inserts comment sequences in traversal payloads (e.g., /etc/*/passwd) to evade filters. |
wrapper-zip |
Leverages zip:// PHP wrapper to read contents of ZIP archives. |
session-id-bruteforce |
Brute-forces PHP session IDs in conjunction with session poisoning attacks. |
rate-limit-adapter |
Introduces deliberate delays between requests to bypass rate-limiting protections. |
Full Plugin List¶
View all available plugins and their descriptions using:
lfimap --list-plugins