Understanding File Upload vulnerabilities with MIME checking - Overthewire.org - Natas 13

The application has more defenses now, specifically it checks and makes sure that the upload file is an image. However, can this check be bypassed, or set to validate a backdoor as an image?

Running through the Overthewire.org Natas wargame. It’s all about web hacking and shows an array of different web vulnerabilities for us to practice on. This video features Natas13.

If you liked it, or you want more, let me know. Subscribe for updates to my channel.

You can check out my twitter account here for updates: https://twitter.com/ChrisADale

Interested in hiring my team and I for consulting? Check us out at https://riversecurity.eu/

I’m also a SANS certified instructor, and you can come to my classes. Check out my schedule here: https://www.sans.org/instructors/chris-dale