This blog is here to help those preparing for CompTIA exams. This is designed to help the exam candidate to understand the concepts, rather than trust a brain dump. CHECK OUT THE BLOG INDEXES!!!
CompTIA Security+ Exam Notes
Let Us Help You Pass
Showing posts with label Directory traversal. Show all posts
Showing posts with label Directory traversal. Show all posts
Thursday, August 8, 2024
Monday, April 22, 2024
Directory Traversal Attack
Directory Traversal Attack Examples
http://www.sample.com/../../../etc/passwd
http://www.sample.com%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fetc%2fpasswd
http://www.sample.com%2f..%2f..%2f..%2fetc%2fpasswd
http://www.sample.com2f..2f..2f..2fetc2fpasswd
C:\Users\JohnDoe\AppData\Local\Microsoft\Office
Some of these examples used percent encoding.
%2E is a period "."
%2F is a "/."
Subscribe to:
Posts (Atom)