CtrlK
Methodologies / Web methodology
File upload methodology
File Upload
☐ Look for upload page, use wappalyser to know the tech used
☐ Search for Client side scripts that filter filenames (configure to edit js files -> proxy settings).
☐ Perform Innocent file upload
☐ Access the uploaded innocent file: gobuster with -x flag
☐ Perform Malicious file upload: bypass client side filtering
☐ Upload file with Invalid extension:
- If Allowed: blacklisting of file names, certain types not allowed
- If it Fails: Whitelisting, specific file types allowed, rest are not.
☐ Magic number change of innocent file to filtered value
☐ MIME filter change of innocent file