lfi-traversal

Community

Detect and prevent Local File Inclusion (LFI) and Path Traversal vulnerabilities

Authorjayjpatel9717
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill automates the detection and prevention of Local File Inclusion (LFI) and Path Traversal vulnerabilities in web applications, enhancing application security.

Core Features & Use Cases

  • LFI Detection: Identifies file inclusion vulnerabilities where user inputs are used to access local files.
  • Path Traversal Detection: Discovers path traversal vulnerabilities that allow attackers to access unauthorized directories.
  • Detection-First Approach: Focuses on detection without exploitation to prevent sensitive data exposure.
  • Methodology: Utilizes a structured approach including parameter identification, path traversal testing, encoding variants, and PHP wrapper checks.

Quick Start

Use the lfi-traversal skill to detect Local File Inclusion (LFI) in the 'showimage.php' endpoint on the target domain.

Dependency Matrix

Required Modules

curlpython3

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: lfi-traversal
Download link: https://github.com/jayjpatel9717/kurukshetra/archive/main.zip#lfi-traversal

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.