FILEZILLA

FileZilla is a free and open-source, cross-platform FTP application, consisting of FileZilla Client and FileZilla Server. Clients are available for Windows, Linux, and macOS, servers are available for Windows only. Both server and client support FTP and FTPS (FTP over SSL/TLS), while the client can in addition connect to SFTP servers.

FileZilla is one of the most commonly used Free FTP Application that allows the user to connect and transfer files between their server and the client. They also provide protocol support on commonly used cloud storages such as Dropbox, Microsoft OneDrive, Google Drive, etc if you purchase the Pro version.

Installation Manual

1 - Download the Client

2 - Agree with License Agreement

3 - Decline the offer to prevent installation of unnecessary software

4 - Depending on the usage of the device, select the accessibility of the client

5 - Leave the default setting and next

6 - Select directory of installation

7 - Install

8 - Wait

9 - Installation Complete

How To Use

[1]

This is the interface of the software

[2]

To connect to your server, fill in the Host, Username, Password and Port of the server FTP, then click on Quickconnect

The relevant information will normally be provided on your server hosting dashboard

[3]

Now we have successfully connected to the server

We can do the file transfer to our server by drag and drop into this window.

CIA Analysis

Confidentiality

The issue with FileZilla’s confidentiality is similar to most of the FTP software.

Whenever there’s a transfer of data or exchange of information, the connection through the internet itself is what makes it vulnerable to attacks, such as man-in-the-middle attack which eavesdrops the transmission. Wireshark or any network monitoring software would also possess risk on exposition of the confidential data as there’s no encryption when file transfer using FileZilla is taking place.

Integrity

The integrity level of FileZilla is also having the same level of risk as we mentioned in Confidentiality. The connections can be intercepted by a man-in-the-middle attack, by intercepting the data midway, alter the data, and forward the changed data to the receiver.

Availability

The availability of FileZilla is rather dependent on both client and host’s status. As the connection required both sides connected to the internet, meaning without the Internet the connection can’t be established. Other than that, the status of the server also needs to be healthy in order to have a strong and stable connection on going. Once the server is down or unavailable, the connection won't be able to be established.