Expand description
Encoding detection and normalization for path security
Functions§
- detect_
dangerous_ unicode - Detect dangerous Unicode characters
- detect_
mixed_ encoding - Detect mixed encoding attacks (UTF-8 + UTF-16)
- detect_
overlong_ utf8 - Detect UTF-8 overlong encoding attacks Overlong encodings like %c0%ae for “.” are invalid but sometimes parsed
- detect_
unicode_ encoding - Detect Unicode encoding tricks
- detect_
url_ encoding - Detect URL-encoded path traversal patterns Checks for: %2e, %2f, %5c and their uppercase variants
- normalize_
and_ check - Normalize path to detect hidden traversal attempts