I would like to know if there is a toolset, project or something, that tries the most common bugs/exploits of Nginx + PHP5-fpm config, to test my server.
I am mostly scared about the ability to execute PHP code in user uploads directory (that is public, example: http://somesite.com/uploads/aaa.gif
).