firebadnofire
/
SecLists
mirror of https://github.com/danielmiessler/SecLists.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
SecLists/Payloads/File-Names
History
PinkDev1 a37dbe1d3d Zipped the max-length folder 2022-06-23 19:50:05 -03:00
..
exec Improved on Filenames 2018-07-25 12:19:35 +01:00
null-byte Improved on Filenames 2018-07-25 12:19:35 +01:00
README.md Zipped the max-length folder 2022-06-23 19:50:05 -03:00
directory-traversal.zip Fixed #770: Zipped files with problematic filenames 2022-06-23 19:32:39 -03:00
max-length.zip Zipped the max-length folder 2022-06-23 19:50:05 -03:00

README.md

directory-traversal.zip

This zip file containes files with filenames for directory traversal:

  • ..::..::;
  • ..::;
  • ..:;
  • ..;
  • ..;:
  • ..\:;
  • .:..:
  • .:..:;
  • .:;
  • .;
  • .;:
  • :..:;
  • ::..::;
  • :;
  • ;
  • ;:
  • ;\:

It's impossible to unzip this file on Windows, due to their arbitrary filename restrictions. It's possible to unzip it in WSL though.

max-length.zip

This zip file containes files with long filenames for testing buffer overflow vulnerabilities, or error-based access control vulnerabilities. This zip also includes a script to generate arbitrarily long filenames.

  • AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA.php.gif
  • AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
  • make-255.sh

It's impossible to unzip this file on Windows, due to their arbitrary filename restrictions. It's possible to unzip it in WSL though.