Upsploit is a cross-platform penetration testing tool for file upload vulnerability identification and exploitation.
File upload vulnerabilities can result in server-side code execution and a complete compromise. These vulnerabilities are plentiful on the web but hard to test for and even harder to test properly. Upsploit provides a number of tests to give penetration testers and developers the ability to easily validate the security controls implemented against file upload vulnerabilities in their web application.
- OSX 10.7 or higher, Modern Linux, Windows Vista SP2 or higher
- Mono (Linux and OSX)
- .NET Framework 4.5 (Windows)
Windows:
$ Upsploit
or double-click the executable
Linux:
$ ./Upsploit
or
$ mono Upsploit
Open Upsploit.sln in Visual Studio (Windows) or MonoDevelop (Windows, Linux or OSX)
Binaries can be found over in the releases section