path-traversal
OfficialExploit file access vulnerabilities.
Authorsecurityfortech
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps identify and exploit vulnerabilities where applications improperly handle user-supplied input, allowing attackers to access sensitive files or execute code on the server.
Core Features & Use Cases
- Path Traversal Exploitation: Test for vulnerabilities allowing access to files outside the intended directory (e.g.,
/etc/passwd,boot.ini). - Local/Remote File Inclusion (LFI/RFI): Exploit weaknesses to include and potentially execute local or remote files.
- Use Case: A web application allows users to view profile pictures via a URL parameter like
?image=user.jpg. This Skill can test if changing the parameter to../../../../etc/passwdreveals sensitive system information.
Quick Start
Use the path-traversal skill to test for file inclusion vulnerabilities against the target URL 'https://example.com/vulnerable.php?file=index.php'.
Dependency Matrix
Required Modules
DotDotPwnWFuzzBurp SuiteZAP
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: path-traversal Download link: https://github.com/securityfortech/hacking-skills/archive/main.zip#path-traversal Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.