Richard, a penetration tester was asked to assess a web application. During the assessment, he discovered a file upload field where users can upload their profile pictures. While scanning the page for vulnerabilities, Richard found a file upload exploit on the website. Richard wants to test the web application by uploading a malicious PHP shell, but the web page denied the file upload. Trying to get around the security, Richard added the ‘jpg’ extension to the end of the file. The new file name ended with ‘.php.jpg’. He then used the Burp suite tool and removed the ‘jpg’’ extension from the request while uploading the file. This enabled him to successfully upload the PHP shell. Which of the following techniques has Richard implemented to upload the PHP shell?

-
Richard, a penetration tester was asked to assess a web application. During the assessment, he discovered a file upload field where users can upload their profile pictures. While scanning the page for vulnerabilities, Richard found a file
upload exploit on the website. Richard wants to test the web application by uploading a malicious PHP shell, but the web page denied the file upload. Trying to get around the security, Richard added the ‘jpg’ extension to the end of the file. The new file name ended with ‘.php.jpg’. He then used the Burp suite tool and removed the ‘jpg’’ extension from the request while uploading the file. This enabled him to successfully upload the PHP shell. Which of the following techniques has Richard implemented to upload the PHP shell?





Session stealing
Cookie tampering
Cross site scripting
Parameter tampering

Comments

Post a Comment

Popular posts from this blog

OpenVas - Open source Vulnerability scanner

-
Image
    OpenVAS, short for Open Vulnerability Assessment System, is an open-source network security scanner used for vulnerability assessment and management. It was first released in 2005 as a fork of the popular Nessus scanner and has since become one of the most widely used vulnerability scanners among security professionals and network administrators. OpenVAS works by conducting comprehensive vulnerability scans of network devices, servers, and web applications. It uses a large database of vulnerability tests and checks for known vulnerabilities, misconfigurations, and security weaknesses. Here are some of the key features of OpenVAS: Comprehensive Scanning: OpenVAS is capable of conducting thorough scans of a wide range of network devices and applications, including servers, workstations, web applications, and databases. Extensive Vulnerability Database: OpenVAS has a vast database of vulnerability tests that can detect known vulnerabilities, misconfigurations, and security weaknesses
Read more

During an internal network audit, you are asked to see if there is any RPC server running on the network and if found, enumerate the associate RPC services. Which port would you scan to determine the RPC server and which command will you use to enumerate the RPC services?

-
During an internal network audit, you are asked to see if there is any RPC server running on the network and if found, enumerate the associate RPC services. Which port would you scan to determine the RPC server and which command will you use to enumerate the RPC services? Port 111, rpcinfo Port 111, rpcenum Port 145, rpcinfo Port 145, rpcenum
Read more

Red Teaming - A comprehensive approach

-
Image
        Red teaming is a comprehensive and systematic approach to testing the security of an organization's systems, networks, and physical facilities. It is a proactive approach that helps organizations identify and mitigate potential security risks by simulating real-world attack scenarios. The objective of red teaming is to identify vulnerabilities, weaknesses, and gaps in an organization's security posture and to help the organization improve its security defenses. Red teaming typically involves a team of experienced security professionals who are given the task of testing an organization's security. These professionals use a variety of techniques, tools, and methodologies to simulate different types of attacks, including social engineering, physical security breaches, network and application attacks, and other methods commonly used by hackers and other threat actors. The goal of a red team is to replicate the tactics, techniques, and procedures of real-w
Read more