akde/infosec

Information security is ultimately about managing risk

File upload checklist

1 Enum, active, General

File upload, Image, Image magick, Image tragick, Imagemagick, Imagetragick, injection, Upload

Try to upload a file and execute/open it on the server.
Try to overwrite a file on the server if you can change the target path in the request.
Try to make invalid requests to provoke error messages.
Try to add some template language which could print/execute something.

(!) If upload does not seem to work, change the suffix e.g. from .php to .pHp.

More:

Try a ZIP bomb
Try a Zipslip file
https://www.onsecurity.io/blog/file-upload-checklist/

File uploads / images

Upload a valid image file to see how it works.
Upload a simple invalid file like a text file.

Try https://github.com/chinarulezzz/pixload
Think about ImageTragick
Flask/Jinja/OCR? Try to upload an image which could be interpretet:
- convert -background "#ffffff" -size 600x100 -fill "#000000" -gravity center label:"{{ self }}" a7.png

Leave a Reply Cancel reply

You must be logged in to post a comment.

About

Personal collection of some infosec stuff. Primary purpose of this site is to collect and organize for myself.

Note: Some content is not publicly visible due to copyright issues. Therefore, some links could be broken.

Checklists

Categories

Checklists: Ports

python -c 'import pty;pty.spawn("/bin/bash")';

python3 -c 'import pty;pty.spawn("/bin/bash")';