GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → almandin → Fuxploider

almandin / Fuxploider

Licence: gpl-3.0
File upload vulnerability scanner and exploitation tool.

Programming Languages

python
139335 projects - #7 most used programming language
Dockerfile
14818 projects

Labels

pentestingdetectionexploitationvulnerability-scannertakeover

Projects that are alternatives of or similar to Fuxploider

Sqlmap
Automatic SQL injection and database takeover tool
Stars: ✭ 21,907 (+997%)
Mutual labels:  pentesting, detection, exploitation, vulnerability-scanner, takeover
Sqli Hunter
SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.
Stars: ✭ 340 (-82.97%)
Mutual labels:  pentesting, detection, exploitation, vulnerability-scanner
Commix
Automated All-in-One OS Command Injection Exploitation Tool.
Stars: ✭ 3,016 (+51.03%)
Mutual labels:  pentesting, detection, exploitation, vulnerability-scanner
Shuriken
Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
Stars: ✭ 114 (-94.29%)
Mutual labels:  pentesting, detection, exploitation
Sifter
Sifter aims to be a fully loaded Op Centre for Pentesters
Stars: ✭ 403 (-79.82%)
Mutual labels:  pentesting, exploitation, vulnerability-scanner
Arissploit
Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.
Stars: ✭ 114 (-94.29%)
Mutual labels:  pentesting, exploitation, vulnerability-scanner
Poc T
渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
Stars: ✭ 1,722 (-13.77%)
Mutual labels:  pentesting, exploitation, vulnerability-scanner
Suid3num
A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)
Stars: ✭ 342 (-82.87%)
Mutual labels:  pentesting, exploitation
Fireelf
fireELF - Fileless Linux Malware Framework
Stars: ✭ 435 (-78.22%)
Mutual labels:  pentesting, exploitation
Dostoevsky Pentest Notes
Notes for taking the OSCP in 2097. Read in book form on GitBook
Stars: ✭ 495 (-75.21%)
Mutual labels:  pentesting, exploitation
Xattacker
X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (-55.08%)
Mutual labels:  exploitation, vulnerability-scanner
sub404
A python tool to check subdomain takeover vulnerability
Stars: ✭ 205 (-89.73%)
Mutual labels:  pentesting, vulnerability-scanner
Mxtract
mXtract - Memory Extractor & Analyzer
Stars: ✭ 499 (-75.01%)
Mutual labels:  pentesting, exploitation
Active Directory Exploitation Cheat Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Stars: ✭ 870 (-56.43%)
Mutual labels:  pentesting, exploitation
Badmod
CMS auto detect and exploit.
Stars: ✭ 296 (-85.18%)
Mutual labels:  exploitation, vulnerability-scanner
Exploitpack
Exploit Pack -The next generation exploit framework
Stars: ✭ 728 (-63.55%)
Mutual labels:  pentesting, exploitation
Vailyn
A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
Stars: ✭ 103 (-94.84%)
Mutual labels:  pentesting, exploitation
avain
A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks
Stars: ✭ 56 (-97.2%)
Mutual labels:  pentesting, vulnerability-scanner
Prismatica
Responsive Command and Control System
Stars: ✭ 81 (-95.94%)
Mutual labels:  pentesting, exploitation
Winpwn
Automation for internal Windows Penetrationtest / AD-Security
Stars: ✭ 1,303 (-34.75%)
Mutual labels:  pentesting, exploitation
View All Similar Projects ➔

fuxploider

Python 3.6 License

Fuxploider is an open source penetration testing tool that automates the process of detecting and exploiting file upload forms flaws. This tool is able to detect the file types allowed to be uploaded and is able to detect which technique will work best to upload web shells or any malicious file on the desired web server.

Screenshots

screenshot

Installation

You will need Python 3.6 at least.

git clone https://github.com/almandin/fuxploider.git
cd fuxploider
pip3 install -r requirements.txt

If you have problems with pip (and if you use windows apparently) :

python3 -m pip install -r requirements.txt

For Docker installation

# Build the docker image
docker build -t almandin/fuxploider .

Usage

To get a list of basic options and switches use :

python3 fuxploider.py -h

Basic example :

python3 fuxploider.py --url https://awesomeFileUploadService.com --not-regex "wrong file type"

[!] legal disclaimer : Usage of fuxploider for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].