Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enhance WSTG-BUSL-09 - Upload of Malicious Files #705

Open
1 of 7 tasks
DotDotSlashRepo opened this issue Jan 2, 2021 · 7 comments
Open
1 of 7 tasks

Enhance WSTG-BUSL-09 - Upload of Malicious Files #705

DotDotSlashRepo opened this issue Jan 2, 2021 · 7 comments
Assignees
@alexlop29
Labels
revise Needs quality review, updates, or revision

Comments

@DotDotSlashRepo
Copy link
Contributor

DotDotSlashRepo commented Jan 2, 2021
edited

What's the issue?
This is an enhancement request. Test Upload of Malicious Files can be enhanced through following suggestions.

  • 1. Filter Evasion : Add magic byte based evasion to bypass weak content validation
  • 2. Filter Evasion: Add metadata based malicious payloads, which can be triggered if uploaded file is included by the web server.
  • 3. Malicious File Contents - Other File Formats : Add attacks on SVG(XXE), HTML(XSS), GIF(XSS)
  • 4. Malicious File Contents - Zip : Add attack on Zip Slip
  • 5. Malicious File Contents : Add a new sub section on upload of configuration file such as .htaccess, web.config etc
  • 6. Tools - Add burpsuite extension - Upload Scanner - https://portswigger.net/bappstore/b2244cbb6953442cb3c82fa0a0d908fa

How do we solve it?
Content needs to be updated to accommodate these enhancements.

Would you like to be assigned to this issue?
Check the box if you will submit a PR to fix this issue. Please read CONTRIBUTING.md.

  • Assign me, please!
@DotDotSlashRepo DotDotSlashRepo added help wanted revise Needs quality review, updates, or revision labels Jan 2, 2021
@ThunderSon
Copy link
Collaborator

Hello!
I will be reviewing this week and discussing the above suggested points. Thanks for going into a detailed discussion about this matter.
There is now conflicting interest in some cases with INPV-11.1 - Local File Inclusion. We'll try to get down on this the soonest, as the team is still coming back from the holidays.

@kingthorin @jespunya @RiieCco your input would be valuable on this matter, as your free time allows.

@kingthorin
Copy link
Collaborator

Ran across this yesterday: https://mobile.twitter.com/hunter0x7/status/1346397333072846848 seems relevant to this topic.

@github-actions

This comment was marked as outdated.

Sign in to view
@github-actions

This comment was marked as outdated.

Sign in to view
@github-actions

This comment was marked as outdated.

Sign in to view
@github-actions

This comment was marked as outdated.

Sign in to view
@alexlop29
Copy link

Hi! I'd like to work on updating several sections of WSTG-BUSL-09.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@alexlop29 alexlop29

Labels
revise Needs quality review, updates, or revision
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@DotDotSlashRepo @kingthorin @ThunderSon @alexlop29