skillZs
LIVE SKILL TAGS
>>> LIVE SKILLS INDEX <<<
* OPEN SOURCE *
NO LOGIN, NO TRACKING
REAL INSTALL DATA
← back to all skills
yaklang/hack-skills1.9k installs

file-access-vuln

Entry P1 category router for file access and upload workflows. Use when testing download endpoints, file paths, local file inclusion, upload flows, preview pipelines, archive extraction, or storage and sharing boundaries.

How do I install this agent skill?

npx skills add https://github.com/yaklang/hack-skills --skill file-access-vuln
view source ↗

Is this agent skill safe to install?

  • Gen Agent Trust Hubpass

    This skill serves as a documentation-based router for file access vulnerability testing workflows. It is purely instructional and contains no executable code, network operations, or security risks.

  • Socketpass

    No alerts

  • Snykpass

    Risk: LOW · No issues

  • ZeroLeakspass

    Score: 93/100 · 2 sections analyzed

What does this agent skill do?

File Access Router

This is the routing entry point for filesystem paths, download endpoints, upload pipelines, and file preview handling.

When to Use

  • Parameters, filenames, download endpoints, or import flows influence file paths
  • The target supports upload, preview, transcoding, extraction, sharing, download, or proxied file access
  • You need to decide whether this is path traversal/LFI or an upload-validation/processing-chain issue

Skill Map

  • Path Traversal LFI: path traversal, file read, wrapper abuse, include chains
  • Upload Insecure Files: upload validation, storage paths, processing chains, overwrite risk, preview/share boundaries

Recommended Flow

  1. First identify whether the entry point is a path parameter, download endpoint, or upload workflow
  2. Then locate whether the issue appears in accept, store, process, or serve stages
  3. Small path-chain and upload-bypass samples are merged into the main topic skills; no separate payload entry is needed

Related Categories

Add the canonical catalog link to the repository README so users can inspect current installs and available audits. The publishing guide covers the complete discovery path.

<a href="https://skillzs.dev/skills/yaklang/hack-skills/file-access-vuln">View file-access-vuln on skillZs</a>