Compétences file-path-traversal
🔒

file-path-traversal

Risque faible 📁 Accès au système de fichiers⚙️ Commandes externes

Test web applications for path traversal vulnerabilities

Web applications often expose sensitive files through path traversal vulnerabilities. This skill provides security professionals with comprehensive testing methodologies to identify and document these security gaps before attackers exploit them.

Prend en charge: Claude Codex Code(CC)
📊 69 Adéquat
1

Télécharger le ZIP du skill

2

Importer dans Claude

Allez dans Paramètres → Capacités → Skills → Importer un skill

3

Activez et commencez à utiliser

Tester

Utilisation de "file-path-traversal". Test /download?file= parameter for path traversal

Résultat attendu:

VULNERABILITY CONFIRMED: Parameter 'file' is vulnerable to path traversal. Payload '../../../etc/passwd' returned system password file contents (HTTP 200, 1847 bytes). Impact: Unauthorized access to sensitive system files. Recommendation: Implement basename() validation and whitelist allowed filenames.

Utilisation de "file-path-traversal". Generate remediation guidance for PHP application

Résultat attendu:

SECURE CODING FIX: Replace direct file inclusion with validated approach. Use basename($_GET['file']) to strip directory paths, validate against whitelist of allowed files, and use realpath() to canonicalize paths before inclusion. See OWASP Path Traversal prevention cheatsheet for complete guidance.

Audit de sécurité

Risque faible
v1 • 2/24/2026

This is a legitimate security testing skill for penetration testers. Static analysis detected 246 patterns, but all are code examples within educational documentation, not executable malicious code. The skill provides testing methodologies for path traversal vulnerabilities (CVE-2021-44228 style testing), including bypass techniques, target file lists, and prevention measures. Content is appropriate for security professionals with proper authorization.

1
Fichiers analysés
492
Lignes analysées
5
résultats
1
Total des audits
Problèmes à risque moyen (1)
SKILL.md:1-492
Security Testing Content - Requires Authorization
This skill contains detailed instructions for exploiting path traversal vulnerabilities. While educational and legitimate for security testing, it should only be used by authorized penetration testers on systems they have permission to test.
Problèmes à risque faible (2)
SKILL.md:104-198
Path Traversal Payload Examples
Documentation includes common path traversal payloads (../ sequences, URL encoding, null bytes) for testing purposes. These are standard security testing patterns.
SKILL.md:204-272
Sensitive File Reference List
Lists sensitive system files (/etc/passwd, /etc/shadow, SSH keys, config files) that attackers might target. This is standard vulnerability assessment knowledge.

Facteurs de risque

📁 Accès au système de fichiers (2)
SKILL.md:104-119 SKILL.md:206-272
⚙️ Commandes externes (4)
SKILL.md:69-89 SKILL.md:102-120 SKILL.md:335-336 SKILL.md:350-351

Motifs détectés

Log Poisoning for RCE EscalationPHP Wrapper Exploitation
Audité par: claude

Score de qualité

38
Architecture
90
Maintenabilité
87
Contenu
50
Communauté
81
Sécurité
91
Conformité aux spécifications

Ce que vous pouvez construire

Penetration Testing Engagement

Security consultants testing web applications for clients need systematic path traversal testing to fulfill OWASP Top 10 coverage requirements and deliver comprehensive vulnerability assessments.

Security Code Review

Development teams reviewing legacy code or third-party components can use this skill to identify path traversal vulnerabilities before deployment and implement proper input validation.

Bug Bounty Hunting

Independent security researchers participating in bug bounty programs can systematically test for path traversal vulnerabilities across multiple targets with documented methodologies.

Essayez ces prompts

Basic Path Traversal Test 
Test the endpoint [ENDPOINT_URL] with parameter [PARAMETER_NAME] for path traversal vulnerabilities. Start with basic payloads like ../../../etc/passwd and document any responses that differ from normal behavior.
Encoded Payload Testing 
The application blocks ../ sequences. Generate URL-encoded and double-encoded path traversal payloads to test filter bypass. Include variations like %2e%2e%2f and ..%252f patterns.
LFI to RCE Escalation 
We have confirmed LFI on [ENDPOINT]. Test escalation to remote code execution using log poisoning or PHP wrapper techniques. Document each attempt and response for the vulnerability report.
Remediation Report Generation 
Create a remediation report for discovered path traversal vulnerabilities. Include root cause analysis, secure code examples in [LANGUAGE], and references to OWASP guidelines.

Bonnes pratiques

  • Always obtain written authorization before testing any system you do not own
  • Document all testing activities with timestamps, payloads used, and responses received
  • Limit testing to minimum necessary to confirm vulnerability - avoid exfiltrating sensitive data
  • Follow responsible disclosure practices when reporting findings to stakeholders

Éviter

  • Testing production systems without explicit written authorization from the owner
  • Exfiltrating sensitive data (credentials, PII) beyond what is needed to prove the vulnerability
  • Using automated tools at high volume that could cause denial of service or data corruption
  • Sharing vulnerability details publicly before the organization has time to remediate

Foire aux questions

Is this skill legal to use?
This skill is legal when used on systems you own or have explicit written authorization to test. Unauthorized security testing may violate computer crime laws. Always obtain proper authorization before testing.
What is the difference between LFI and path traversal?
Local File Inclusion (LFI) is a specific type of path traversal where the application includes local files, often leading to code execution. Path traversal is broader - accessing files outside the intended directory. LFI is typically more severe.
Can this skill test for remote file inclusion (RFI)?
This skill focuses on local path traversal. RFI (including remote URLs) is a related but distinct vulnerability. The techniques overlap, but RFI requires different payloads targeting URL inclusion.
What should I do if I find a path traversal vulnerability?
Document the vulnerability with proof (sanitized), assess the impact, and report it to the system owner through their responsible disclosure process. Do not exploit beyond confirming the vulnerability exists.
Why do some payloads use null bytes (%00)?
Null bytes can truncate strings in older PHP versions (before 5.3.4), bypassing extension checks like .jpg. This is less effective on modern systems but included for completeness in testing legacy applications.
How do I know if my testing is causing harm?
Monitor response times and error rates. If you see 500 errors, timeouts, or service degradation, stop testing immediately. Path traversal reads are generally safe, but avoid testing write/delete functionality on production systems.

Détails du développeur

Auteur

zebbern

Licence

MIT

Dépôt

https://github.com/sickn33/antigravity-awesome-skills/tree/main/skills/file-path-traversal

Réf

main

Structure de fichiers

📄 SKILL.md