Yet when you view the output from SimpleHTTPServer you see you are getting a get request for “GET /testrfi.php.php HTTP/1.0” 404
so what’s basically happening is that the server sending the request to your own SimpleHTTPServer is appending a .php to your request (hence the .php.php) and you are getting a 404 error message.
This is very helpful as it means you can now simply rename your “testrfi.php” file to simply “testrfi” – and when you make the request from the remote server again, it will serve the page with a 200 code.
once you’ve finished you can stop the service with ctrl+z and then completely kill the process (close port 8001) with:
root@kali~# fuser -k 8001/tcp
“There are risks and costs to a program of action—but they are far less than the long range cost of comfortable inaction.”
- John F. Kennedy