0

fuxploider

File upload vulnerability scanner and exploitation tool.

Github repo
Main metrics

Github stars Tracking Chart

fuxploider

Python 3.6 License

Fuxploider is an open source penetration testing tool that automates the process of detecting and exploiting file upload forms flaws. This tool is able to detect the file types allowed to be uploaded and is able to detect which technique will work best to upload web shells or any malicious file on the desired web server.

Screenshots

screenshot

Installation

You will need Python 3.6 at least.

git clone https://github.com/almandin/fuxploider.git
cd fuxploider
pip3 install -r requirements.txt

For Docker installation

# Build the docker image
docker build -t almandin/fuxploider .

Usage

To get a list of basic options and switches use :

python3 fuxploider.py -h

Basic example :

python3 fuxploider.py --url https://awesomeFileUploadService.com --not-regex "wrong file type"

[!] legal disclaimer : Usage of fuxploider for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

Main metrics

Overview
Name With Owneralmandin/fuxploider
Primary LanguagePython
Program languagePython (Language Count: 4)
Platform
License:GNU General Public License v3.0
所有者活动
Created At2017-07-14 09:30:06
Pushed At2025-05-08 09:00:36
Last Commit At2025-05-08 11:00:36
Release Count3
Last Release Namev1.0 (Posted on )
First Release Namev0.1.2 (Posted on )
用户参与
Stargazers Count3.2k
Watchers Count69
Fork Count516
Commits Count143
Has Issues Enabled
Issues Count0
Issue Open Count0
Pull Requests Count16
Pull Requests Open Count0
Pull Requests Close Count2
项目设置
Has Wiki Enabled
Is Archived
Is Fork
Is Locked
Is Mirror
Is Private