# KADABRA: Automatic LFI Exploiter (all LFI attacks implemented)

{% hint style="info" %}
**2022년 NHN Cloud&#x20;**<mark style="color:red;">**무료**</mark>**&#x20;교육일정** : <https://doc.skill.or.kr/2022-NHN-Cloud-Education>
{% endhint %}

## 제목 : KADABRA: Automatic LFI Exploiter (all LFI attacks implemented)

{% hint style="danger" %}
**주의 : 테스트 이외의 목적으로 발생 되는 문제점에 대해서는 프로그램을 사용하는 사용자가 책임을 지셔야 한다는 것을 알려 드립니다.**

**Disclaimer: I am not responsible for any damage done using this tool. This tool should only be used for educational purposes and for penetration testing.**
{% endhint %}

### 내용 :&#x20;

> KADABRA 툴 에 대한 설치 및 시현 영상입니다.
>
> 설치 방법 : 해당 폴더에 들어가셔서 bash make.bash 를 실행 하시면 설치가 완료 됩니다.

### Description :&#x20;

> **Kadabra contains errors and it is deprecated (some of its functionalities do not work properly). Go here ->** [**https://github.com/D35m0nd142/LFISuite**](https://github.com/D35m0nd142/LFISuite) **to see the new LFI-dedicated software, called LFISuite, I developed, totally written in Python 2.7, much better working than Kadabra and with many more attack modalities. LFISuite provides an attack modality called "Auto-HACK" (in this case it is TOTALLY automatic) by which it scans and find LFI vulnerabilities, then exploits them using the best attack modes without you having to choose or do anything.**

### Infomation : &#x20;

> GitHub : <https://github.com/D35m0nd142/Kadabra>

{% embed url="<https://www.youtube.com/watch?v=iE1ILC86fYk>" %}
시연 영상    &#x20;
{% endembed %}

{% hint style="info" %}
**2022년 NHN Cloud&#x20;**<mark style="color:red;">**무료**</mark>**&#x20;교육일정** : <https://doc.skill.or.kr/2022-NHN-Cloud-Education>
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://sec.skill.or.kr/hacking/kadavra-automatic-lfe-exploit.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.