| Web Attack | Tools | Note | | ------------------------- | ------ | --------------- | | [[Local File Inclusion]] | LFImap | | | [[Remote File Inclusion]] | | | | [[File Upload]] | | | | [[Command injection]] | | | | [[HTTP Verb Tampering]] | | | | [[IDOR]] | | | | [[Directory Traversal]] | | | | [[XXE injection]] | | | | [[Arbitrary File Read]] | | Linux / Windows |