fuxploider

Fuxploider is an open source penetration testing tool that automates the process of detecting and exploiting file upload forms flaws. This tool is able to detect the file types allowed to be uploaded and is able to detect which technique will work best to upload web shells or any malicious file on the desired web server.

Screenshots

screenshot

Installation

You will need Python 3.6 at least.

git clone https://github.com/almandin/fuxploider.git
cd fuxploider
pip3 install -r requirements.txt

For Docker installation

# Build the docker image
docker build -t almandin/fuxploider .

Usage

To get a list of basic options and switches use :

python3 fuxploider.py -h

Basic example :

python3 fuxploider.py --url https://awesomeFileUploadService.com --not-regex "wrong file type"

[!] legal disclaimer : Usage of fuxploider for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

名称与所有者	almandin/fuxploider
主编程语言	Python
编程语言	Python (语言数: 4)
平台
许可证	GNU General Public License v3.0

名称与所有者

almandin/fuxploider

主编程语言

Python

编程语言

Python (语言数: 4)

平台

许可证

GNU General Public License v3.0

创建于	2017-07-14 09:30:06
推送于	2025-05-08 09:00:36
最后一次提交	2025-05-08 11:00:36
发布数	3
最新版本名称	v1.0 (发布于 )
第一版名称	v0.1.2 (发布于 )

创建于

2017-07-14 09:30:06

推送于

2025-05-08 09:00:36

最后一次提交

2025-05-08 11:00:36

发布数

星数	3.2k
关注者数	69
派生数	516
提交数	143
已启用问题?
问题数	0
打开的问题数	0
拉请求数	16
打开的拉请求数	0
关闭的拉请求数	2

已启用Wiki?
已存档?
是复刻?
已锁定?
是镜像?
是私有?

fuxploider

Github星跟踪图

fuxploider

Screenshots

Installation

Usage

主要指标