Dosu Logo
Home
Documents
resource-management
resource-management
Type
External
Status
Published
Created
Feb 27, 2026
Updated
Mar 30, 2026
Updated by
Dosu Bot

Resource Management Guide#

This guide covers the management of attack resources in CipherSwarm v2, including wordlists, rule files, mask patterns, and custom charsets.

Table of Contents#

Resource Types Overview#

CipherSwarm v2 supports multiple resource types with enhanced management capabilities:

1. Resource Categories#

  • Wordlists: Dictionary files for password attacks
  • Rule Lists: Hashcat rule files for password transformations
  • Mask Lists: Collections of mask patterns for structured attacks
  • Charsets: Custom character set definitions
  • Dynamic Wordlists: Auto-generated from cracked passwords (read-only)

2. Resource Sources#

  • Uploaded: Files uploaded via web interface
  • Generated: System-generated resources (e.g., dynamic wordlists)
  • Ephemeral: Temporary resources created within attacks

Resource Browser#

1. Accessing Resources#

Navigate to the Resource Browser via:

  • Main navigation → "Resources"
  • Attack editor → Resource selection dropdowns
  • Campaign configuration → Resource assignment

2. Resource List View#

The resource browser displays:

<div class="resource-list">
 <div class="resource-item">
  <div class="resource-info">
   <h3>
    rockyou.txt
   </h3>
   <span class="resource-type">
    Word List
   </span>
   <span class="resource-size">
    14,344,391 lines (133 MB)
   </span>
  </div>
  <div class="resource-actions">
   <button class="edit-btn">
    Edit
   </button>
   <button class="download-btn">
    Download
   </button>
   <button class="delete-btn">
    Delete
   </button>
  </div>
 </div>
</div>
  • Type Filter: Filter by resource type (wordlist, rules, masks, charsets)
  • Project Filter: Show project-specific or global resources
  • Search: Find resources by name or description
  • Sort Options: Name, size, last modified, usage count

4. Previewing Resource Files#

Users can preview the contents of uploaded resources directly in the web interface without downloading the entire file:

Preview Capabilities#

  • Supported Types: Word lists, mask lists, and rule lists
  • Direct Viewing: Preview file contents before downloading or using in attacks
  • Lazy Loading: File content loads on-demand when viewing a resource

Preview Limits#

  • Default Limit: 1,000 lines displayed by default
  • Maximum Lines: Up to 5,000 lines can be previewed
  • Byte Cap: Maximum 5MB of file content loaded for preview
  • Partial Display: If a file exceeds these limits, the interface shows "Showing first X lines of file"

Technical Implementation#

The preview feature uses efficient streaming to handle large files:

  • Memory Safe: Streams file content directly from storage without loading the entire file into memory
  • Performance: Handles multi-gigabyte files safely without consuming excessive system resources
  • Edge Cases: Properly handles files without newlines or with trailing content after the last newline

This design balances usability (showing enough content to verify the resource) with system stability (preventing memory issues with very large files).

For more details, see Previewing Resource Files.

Uploading Resources#

1. Upload Process#

  1. Navigate to Upload

    • Click "Upload Resource" in resource browser
    • Or use drag-and-drop interface

  2. Select File and Type

    File: rockyou.txt
Resource Type: Word List # Auto-detected
Name: RockYou Wordlist
Description: Common passwords wordlist
Project Scope: Current Project # or Global

  3. Upload Progress

    The upload form displays a progress bar with two distinct phases:

    • "Preparing... X%": The browser calculates an MD5 checksum of the file for integrity verification. This phase is displayed for files under 1 GB.
    • "Uploading... X%": The actual file transfer to the server. This phase is always shown during upload.

    For files larger than 1 GB, the "Preparing" phase is automatically skipped to prevent browser performance issues. The server performs checksum verification as a background job after the upload completes.

  4. Upload Validation

    • File format validation
    • Size limit checking
    • Content preview
    • Duplicate detection

2. Supported Formats#

The improved upload experience with progress feedback applies to all resource types:

Wordlists#

  • Extensions: .txt, .lst, .dict
  • Encoding: UTF-8, ASCII
  • Format: One word per line
  • Size Limit: 1GB (configurable)

Rule Lists#

  • Extensions: .rule, .rules
  • Encoding: ASCII only
  • Format: Hashcat rule syntax
  • Validation: Real-time syntax checking

Mask Lists#

  • Extensions: .mask, .masks
  • Encoding: ASCII only
  • Format: One mask per line
  • Validation: Hashcat mask syntax

Charsets#

  • Extensions: .charset, .hchr
  • Encoding: ASCII only
  • Format: Custom charset definitions
  • Example: ?1 = abcdefghijklmnopqrstuvwxyz

3. Project Scoping#

Resources can be scoped to projects:

  • Project-Specific: Only accessible within assigned projects
  • Global: Available to all projects (admin only)
  • Automatic Assignment: Based on user's current project context

4. Large File Handling#

CipherSwarm handles large file uploads with specific optimizations to ensure browser stability and data integrity:

Threshold Behavior#

  • Files under 1 GB: Full client-side MD5 checksum is calculated during the "Preparing" phase before upload begins. This verifies integrity during transfer.
  • Files over 1 GB: Client-side checksum calculation is automatically skipped to prevent browser performance issues and potential stalls. Upload proceeds directly to the "Uploading" phase.

Server-Side Verification#

When client-side checksums are skipped for large files:

  • The file uploads directly to storage without an initial checksum
  • A background job (VerifyChecksumJob) automatically computes the MD5 checksum after upload completes
  • The checksum_verified status is set to false during upload and updated to true once verification completes
  • Verification typically completes within minutes, depending on file size and server load

Enhanced Error Handling#

The verification system includes robust error handling for reliability:

  • Automatic Retry: VerifyChecksumJob retries I/O errors (file not found, permission denied, I/O errors) up to 5 times with polynomial backoff before logging error-level messages
  • Actionable Remediation: Error messages include resource details and recommended actions for administrators
  • Persistent Failure Recovery: If a resource remains unverified after retries, RequeueUnverifiedResourcesJob automatically re-enqueues it for verification every 6 hours

Integrity Verification#

  • Regular files (<1 GB): Integrity verified during upload via client-side MD5 checksum
  • Large files (>1 GB): Integrity verified after upload via server-side background job
  • The system tracks verification status via the checksum_verified attribute on each resource

5. Upload Error Handling#

If an upload fails, the interface provides clear feedback:

  • An inline error message appears below the progress bar
  • The submit button is automatically re-enabled so you can retry
  • Common errors include:
    • Network timeouts or connection failures
    • File size exceeding configured limits
    • Invalid file formats
    • Storage quota exceeded

Previewing Resource Files#

Users can preview the contents of uploaded resources directly in the web interface without downloading the entire file.

1. Accessing File Previews#

File previews are available for:

  • Word Lists: Preview dictionary contents
  • Mask Lists: Review mask patterns
  • Rule Lists: Examine transformation rules

2. Preview Interface#

When viewing a resource, the preview interface displays:

  • Line Count Indicator: Shows how many lines are displayed (e.g., "Showing first 1,000 lines of file")
  • Lazy Loading: Content loads on-demand when viewing the resource page
  • Direct Viewing: Preview without downloading the entire file

3. Preview Limits#

The preview feature enforces safety limits to maintain system performance:

Line Limits#

  • Default: 1,000 lines displayed
  • Maximum: 5,000 lines can be previewed
  • Configurable: Limit parameter can be adjusted within the allowed range

Size Limits#

  • Byte Cap: Maximum 5MB of file content loaded for preview
  • Streaming: Uses efficient streaming to handle large files
  • Memory Safe: Prevents system out-of-memory crashes with multi-gigabyte files

4. Large File Handling#

For resources exceeding preview limits:

  • Partial Preview: Shows "Showing first X lines of file" to indicate truncated view
  • Download Option: Full file available via download button
  • Efficient Streaming: System streams directly from storage without loading entire file into memory

5. Technical Considerations#

The preview system is designed for both usability and stability:

  • Edge Case Handling: Properly handles files without newlines or with trailing content
  • Performance: Streams file content in chunks, processing only what's needed
  • System Protection: Byte cap prevents unbounded memory consumption with unusual file formats

This approach allows users to verify resource contents and correctness before deploying them in attacks, while protecting system resources from large file operations.

Line-Level Editing#

1. Inline Editor#

For smaller resources (under configured limits), CipherSwarm v2 provides inline editing:

<div class="line-editor">
 <div class="line-item">
  <span class="line-number">
   1
  </span>
  <input class="line-content" type="text" value="password123"/>
  <button class="validate-line">
  </button>
  <button class="delete-line">
   ×
  </button>
 </div>
 <div class="line-item">
  <span class="line-number">
   2
  </span>
  <input class="line-content" type="text" value="admin"/>
  <button class="validate-line">
  </button>
  <button class="delete-line">
   ×
  </button>
 </div>
 <button class="add-line">
  + Add Line
 </button>
</div>

2. Edit Limitations#

  • Size Threshold: Resources over 5MB or 10,000 lines require download/reupload
  • Resource Types: Only text-based resources support inline editing
  • Validation: Real-time syntax checking for rules and masks
  • Permissions: Edit access based on project membership

3. Validation Features#

Rule Validation#

Line 3: "+rfoo" ❌
Error: Unknown rule operator 'f'

Line 7: "?u?d?l?l" ❌
Error: Duplicate character class at position 3

Mask Validation#

Line 2: "?d?d?d?d" ✅
Valid: 4-digit numeric mask

Line 5: "?x?d?d" ❌
Error: Invalid character class '?x'

Ephemeral Resources#

1. Attack-Local Resources#

CipherSwarm v2 supports ephemeral resources created within attacks:

  • Lifecycle: Created with attack, deleted when attack is removed
  • Storage: Stored in database, not in MinIO
  • Usage: Single-attack only, not reusable
  • Export: Included inline when exporting attacks

2. Creating Ephemeral Resources#

Ephemeral Wordlists#

<div class="ephemeral-wordlist">
 <h4>
  Custom Words
 </h4>
 <div class="word-input">
  <input placeholder="Enter word" type="text"/>
  <button class="add-word">
   +
  </button>
 </div>
 <div class="word-tags">
  <span class="word-tag">
   password123
   <button>
    ×
   </button>
  </span>
  <span class="word-tag">
   admin
   <button>
    ×
   </button>
  </span>
  <span class="word-tag">
   company2024
   <button>
    ×
   </button>
  </span>
 </div>
</div>

Ephemeral Masks#

<div class="ephemeral-masks">
 <h4>
  Custom Masks
 </h4>
 <div class="mask-list">
  <input placeholder="Enter mask" type="text" value="?d?d?d?d"/>
  <button class="validate-mask">
  </button>
  <button class="delete-mask">
   ×
  </button>
 </div>
 <button class="add-mask">
  + Add Mask
 </button>
</div>

3. Use Cases#

  • Target-Specific Words: Company names, locations, dates
  • Custom Patterns: Specific mask patterns for known formats
  • One-Time Lists: Temporary wordlists for specific campaigns
  • Testing: Quick resource creation for attack testing

Dynamic Wordlists#

1. Previous Passwords#

CipherSwarm v2 automatically generates dynamic wordlists from cracked passwords:

  • Source: Previously cracked passwords within the project
  • Updates: Automatically updated as new passwords are cracked
  • Scope: Project-specific, never shared across projects
  • Usage: Available in dictionary attack configuration

2. Configuration#

attack_config:
  use_previous_passwords: true
    # Wordlist dropdown hidden when this is enabled
    # Ephemeral wordlist option also hidden

3. Benefits#

  • Targeted Attacks: Use organization-specific passwords
  • Pattern Recognition: Leverage discovered password patterns
  • Efficiency: Focus on likely candidates first
  • Automation: No manual wordlist management required

Storage and Performance#

1. MinIO Integration#

CipherSwarm v2 uses MinIO for scalable resource storage:

Storage Structure#

buckets/
├── wordlists/
│ ├── uuid1.txt
│ └── uuid2.txt
├── rules/
│ ├── uuid3.rule
│ └── uuid4.rule
├── masks/
│ └── uuid5.mask
└── charsets/
    └── uuid6.charset

Benefits#

  • Scalability: Handle large resource collections
  • Performance: Distributed storage and caching
  • Reliability: Built-in redundancy and backup
  • Security: Presigned URLs for secure access

2. Caching Strategy#

  • Agent Caching: Resources cached locally on agents
  • CDN Integration: Optional CDN for global distribution
  • Intelligent Prefetch: Commonly used resources pre-cached
  • Cache Invalidation: Automatic updates when resources change

3. Performance Optimization#

Upload Optimization#

  • Chunked Uploads: Large files uploaded in chunks
  • Progress Tracking: Real-time upload progress
  • Resume Support: Resume interrupted uploads
  • Compression: Automatic compression for text files

Download Optimization#

  • Presigned URLs: Direct agent downloads from MinIO
  • Parallel Downloads: Multiple concurrent downloads
  • Bandwidth Limiting: Configurable download limits
  • Retry Logic: Automatic retry on failures

Resource Metadata#

1. Tracked Information#

CipherSwarm tracks comprehensive metadata for each resource:

resource_metadata:
  id: uuid
  name: RockYou Wordlist
  resource_type: word_list
  file_size: 139921507 # bytes
  line_count: 14344391
  encoding: utf-8
  checksum: sha256:abc123...
  checksum_verified: true # integrity verification status

    # Usage tracking
  used_in_attacks: 15
  last_used: '2024-01-15T10:30:00Z'
  success_rate: 0.23 # percentage of successful attacks
    # Project information
  project_id: 123
  is_global: false
  created_by: admin@example.com
  created_at: '2024-01-01T00:00:00Z'
  modified_at: '2024-01-15T10:30:00Z'

2. Usage Analytics#

  • Attack Success Rate: Percentage of successful attacks using this resource
  • Performance Metrics: Average time to first crack
  • Popularity: Usage frequency across campaigns
  • Effectiveness: Crack rate per resource type

3. Checksum Verification Status#

Each uploaded resource includes a checksum_verified attribute that indicates the integrity verification status:

  • Verified (true): The resource's checksum has been computed and validated
    • Regular files (<1 GB): Verified during upload via client-side MD5 checksum
    • Large files (>1 GB): Verified after upload via server-side background job
  • Pending (false): Verification is in progress (typical for large files immediately after upload)
  • Failed: Checksum mismatch detected — re-upload recommended

The checksum_verified status can be viewed in the resource browser or via the resource metadata API. Verification typically completes within minutes for large files, depending on file size and server load.

Automatic Recovery#

CipherSwarm provides automatic recovery for resources that remain unverified:

  • Automatic Re-enqueue: RequeueUnverifiedResourcesJob runs every 6 hours to automatically re-enqueue verification for resources stuck with checksum_verified: false
  • Configurable Threshold: Resources are re-enqueued if they remain unverified longer than the configured threshold (default: 6 hours, configurable via ApplicationConfig.checksum_verification_retry_threshold)
  • Transient Failure Recovery: This mechanism provides automatic recovery from transient storage issues, I/O errors, or temporary file access problems without manual intervention

Admin Dashboard Visibility#

Administrators can monitor checksum verification status through the admin dashboards:

  • Verification Status Field: The checksum_verified attribute is displayed in WordList, RuleList, and MaskList dashboards
  • Unverified Filter: Use the unverified: collection filter in any admin dashboard to quickly identify resources requiring attention
  • Monitoring: Track resources that remain unverified to identify persistent storage or configuration issues

Security and Access Control#

1. Project Isolation#

  • Strict Boundaries: Resources never leak between projects
  • Access Control: Users only see resources from assigned projects
  • Admin Override: Administrators can access all resources
  • Audit Trail: All resource access logged

2. Permission Model#

permissions:
  view: [user, power_user, admin]
  upload: [power_user, admin]
  edit: [power_user, admin]
  delete: [admin]
  global_access: [admin]

3. Security Features#

  • Virus Scanning: Uploaded files scanned for malware
  • Content Validation: File format and content validation
  • Size Limits: Configurable upload size limits
  • Rate Limiting: Upload frequency limits per user
  • Encryption: Resources encrypted at rest and in transit

Best Practices#

1. Resource Organization#

  • Naming Convention: Use descriptive, consistent names
  • Categorization: Organize by purpose, source, or target
  • Documentation: Include descriptions and usage notes
  • Versioning: Maintain multiple versions of evolving resources

2. Performance Optimization#

  • Size Management: Keep resources appropriately sized
  • Deduplication: Remove duplicate entries
  • Compression: Use compressed formats when possible
  • Cleanup: Regularly remove unused resources

3. Security Considerations#

  • Source Verification: Verify resource sources and integrity
  • Content Review: Review uploaded content for sensitive data
  • Access Auditing: Monitor resource access patterns
  • Regular Updates: Keep resources current and relevant

Troubleshooting#

1. Upload Issues#

Problem: Upload fails or times out

# Check file size and format
ls -lh wordlist.txt
file wordlist.txt

# Verify network connectivity
curl -I https://CipherSwarm.example.com/api/v1/web/resources/

# Check browser console for errors

Solution:

  • Verify file size is under limit
  • Check network connectivity
  • Try uploading smaller chunks
  • Contact administrator for limit increases

Problem: Upload shows "Preparing..." for a long time

  • Cause: The browser is calculating an MD5 checksum for integrity verification
  • Solution: For files under 1 GB, this is expected and ensures data integrity. For files over 1 GB, this step is automatically skipped to prevent browser stalls.
  • If issues persist: Contact your administrator if you experience problems with large file uploads

Problem: Resource shows checksum_verified: false

  • Cause: Normal for large files (>1 GB) immediately after upload — verification runs as a background job
  • Expected Duration: Typically completes within minutes, depending on file size and server load
  • Automatic Recovery: The system automatically re-enqueues verification on a configurable sweep interval (default: every 6 hours) for resources that remain unverified. Transient issues (temporary storage problems, I/O errors) should resolve without manual intervention.
  • Admin Monitoring: Administrators can view unverified resources in the admin dashboards (WordList, RuleList, MaskList) using the unverified: collection filter
  • When to be concerned: If status remains false beyond the configured retry threshold and at least one subsequent requeue cycle, or if it changes to failed
  • Solution: Resources should automatically recover after the next scheduled sweep if the issue was transient. For persistent failures, check server logs or contact administrator. Re-upload may be required if the file is corrupt or inaccessible.

2. Edit Restrictions#

Problem: Cannot edit resource inline

  • Cause: Resource exceeds size threshold
  • Solution: Download, edit offline, and reupload
  • Alternative: Use line-by-line editing for smaller changes

3. Access Denied#

Problem: Cannot access certain resources

  • Cause: Project access restrictions
  • Solution: Contact administrator for project assignment
  • Check: Verify current project context in header

4. Performance Issues#

Problem: Slow resource downloads

# Test download speed
curl -w "@curl-format.txt" -o /dev/null -s "https://resource-url"

# Check agent cache
CipherSwarm-agent cache status

Solution:

  • Clear agent cache and retry
  • Check network bandwidth
  • Contact administrator about CDN configuration

Integration with Attacks#

1. Resource Selection#

Resources are selected during attack configuration:

dictionary_attack:
  wordlist: rockyou.txt # From resource browser
  rules: best64.rule # Optional rule file
  min_length: 8
  max_length: 16

mask_attack:
  masks: common-patterns.mask # Mask list resource
  custom_charset_1: ?l?d # Or custom charset file

hybrid_attack:
  wordlist: names.txt
  mask: ?d?d?d

2. Resource Validation#

Before attacks start, resources are validated:

  • Existence: Verify resource exists and is accessible
  • Compatibility: Check resource type matches attack mode
  • Integrity: Verify checksums and file integrity
  • Permissions: Ensure user has access to resource

3. Dynamic Updates#

  • Live Updates: Resources can be updated while attacks are running
  • Automatic Restart: Attacks restart when linked resources change
  • Version Control: Track which resource version was used
  • Rollback: Ability to revert to previous resource versions

For additional information: