Module encoding

Module encoding 

Source
Expand description

Encoding detection and normalization for path security

Functions§

detect_dangerous_unicode
Detect dangerous Unicode characters
detect_mixed_encoding
Detect mixed encoding attacks (UTF-8 + UTF-16)
detect_overlong_utf8
Detect UTF-8 overlong encoding attacks Overlong encodings like %c0%ae for “.” are invalid but sometimes parsed
detect_unicode_encoding
Detect Unicode encoding tricks
detect_url_encoding
Detect URL-encoded path traversal patterns Checks for: %2e, %2f, %5c and their uppercase variants
normalize_and_check
Normalize path to detect hidden traversal attempts