File_Upload

File Upload

OVERVIEW:

This chapter documents all clients, tested for file upload (CLIENT ➔ SERVER) via HTTP. These fall partially under Exfiltration, as categorized by MITRE ATT&CK [1].

NOTE: All file upload test cases were conducted using test files of various sizes (10KB; 200KB; 1MB; 10MB; 200MB). In every test case, the file with the largest size, with which the download was successful, within a reasonable timeframe (up to a few minutes; local network), was documented. This can be used as a rough reference point, to compare the performance of the documented techniques.

MD5 checksums of used test files:

76b4060a4313558ddc665a52b66d47d1 testfile_10KB
97d28265d74c44079eca823879d019de testfile_10MB
7a2dfdb1ff3a84602c3ad3d2bc9503af testfile_1MB
c19788a91c0af6d403e04da76702d274 testfile_200KB
d3f7cd6ccbc23d56e3b47dbf807b439b testfile_200MB

[1] https://attack.mitre.org/tactics/TA0010/

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

File_Upload

File Upload

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally