FUSE: penetration testing tool

FUSE is a penetration system designed to detect Unlimitedrecut Executable File Upload (UEFU) vulnerabilities. Details of the testing strategy can be found at σελίδα us.

Installation

# apt-get install rabbitmq-server # apt-get install -pip # apt-get install git

Use

Configuration

FUSE uses one file configuration set is provided by the user and defines parameters for a PHP application. The script must be completed before of a web application. You can view the file README and  examples of configuration files .

Configure to monitor (Optional)

$ vim filemonitor.py

...
 10 MONITOR_PATH='/var/www/html/' Default port of File Monitor
 12 EVENT_LIST_LIMITATION=8000    

Implementation


FUSE


$ python framework.py [Path of configuration file]


File tracking


$ python filemonitor.py


Result
  • When FUSE completes the penetration test, a [HOST] directory and a [HOST_report.txt] directory are created.
  • A [HOST] folder stores files that have been uploaded.
  • [HOST_report.txt] file contains test results and information related to U (E) FU-enabled files.

You can find the program here.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.087 registrants.

FUSEpenetration testing

Written by Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).