Skip to content

usethisname1419/php-wrapper-hacking-game

BranchesTags

Repository files navigation

LFI Practice Game

A Local File Inclusion (LFI) practice game designed to help learn about PHP file inclusion vulnerabilities and security.

Prerequisites

  • PHP 7.0 or higher
  • Python 3.6 or higher
  • Web browser

Setup

  1. Clone or download this repository
  2. Navigate to the lfi_game directory
  3. Run the launcher: 
    ./start.sh
  4. The game will open in your default browser at http://localhost:5555

Game Structure

Practice Section (index.php)

Contains 5 practice flags to learn basic LFI techniques:

  • Flag 1: Basic file inclusion
  • Flag 2: Directory traversal
  • Flag 3: PHP wrapper usage
  • Flag 4: Configuration file access
  • Flag 5: Hidden directory access

Challenge Section (game/playgame.php)

Contains 3 challenging levels:

  • Level 1: Basic LFI challenge
  • Level 2: PHP wrapper challenge
  • Level 3: Advanced bypass techniques

Learning Objectives

  1. Understanding Local File Inclusion vulnerabilities
  2. Learning about PHP wrappers and their usage
  3. Practicing file inclusion techniques
  4. Understanding security measures and bypasses

Security Note

This game is designed for educational purposes only. Do not use these techniques on systems you don't own or have permission to test.

Contact/Notes

Any suggestions, bug reports or comments are welcome. Contact d.johnston@lthcybersecurity

About

practice your LFI skills with PHP wrappers

Topics

game php-wrapper hacking lfi lfi-labs hacking-simulation cybersecurity-education php-hacker

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages