https://zer0arc4.github.io/tags/lfi/Recent content in Lfi on zer0arc4Hugoen-usSat, 20 Jun 2026 20:03:26 +0530https://zer0arc4.github.io/writeups/overthewire/overthewire-natas-levels-09/Thu, 18 Jun 2026 00:00:00 +0000https://zer0arc4.github.io/writeups/overthewire/overthewire-natas-levels-09/Covers source code disclosure, directory discovery, cookie tampering, LFI, encoding, and command injection.https://zer0arc4.github.io/writeups/vulnyx/doctor-vulnyx/Fri, 29 May 2026 00:00:00 +0000https://zer0arc4.github.io/writeups/vulnyx/doctor-vulnyx/Exploited LFI to retrieve an encrypted SSH key, cracked its passphrase, gained SSH access, and escalated privileges via a writable /etc/passwd file.https://zer0arc4.github.io/writeups/vulnyx/lower-5/Thu, 14 May 2026 00:00:00 +0000https://zer0arc4.github.io/writeups/vulnyx/lower-5/Exploited an LFI vulnerability to poison Apache logs, gained a reverse shell, abused sudo permissions, cracked a GPG passphrase, and recovered root credentials.