Advanced File Upload Exploit | Double Extension
Thank you for watching the video :
Advanced File Upload Exploit | Double Extension
Today we will learn about how to exploit a file upload feature by using double extension technique. In the previous video, we saw how to create a payload and bypass the content-type validation.
Some of the bypass techniques for the deny list methods is using double extensions technique and this is a famous way to bypass in Apache.
00:00 - Intro
00:15 - Double extension technique
00:55 - Demo
03:30 - Execute the backdoor
ABOUT OUR CHANNEL📜
Cyber Security is a non-profit initiative taken by security professionals. Here we are uploading a series of videos to learn and get expertise in various domains of security. We are teaching tools, techniques, and methods which can be used on penetration testing assignments.
📌CHECK OUT OUR OTHER VIDEOS
▶️ OWASP ZAP For Beginners | Form Authentication
• OWASP ZAP For Beginners | Form Authen...
▶️ Insecure Deserialization | OWASPT Top 10
• Insecure Deserialization | OWASPT Top 10
▶️ HTTP Security Headers | Part 02
• HTTP Security Headers | X-Frame-Optio...
FOLLOW US ON SOCIAL
▶️Security Blog
https://bhaumikshah04.blogspot.com/
▶️Facebook
/ infosecforstarters
#owasptop10 #webapppentest #appsec #applicationsecurity #apitesting #apipentest #cybersecurityonlinetraining #freesecuritytraining #penetrationtest #ethicalhacking #burpsuite #pentestforbegineers #owaspzap
Related Searches:
file upload vulnerability
file upload exploit
how to exploit a file upload
unrestricted file upload testing
exploiting file upload vulnerabilities