> ## Documentation Index
> Fetch the complete documentation index at: https://rootea.es/llms.txt
> Use this file to discover all available pages before exploring further.

# Directory / Path Traversal

> Cross-platform resources for Directory / Path Traversal: curated HTB machines, PortSwigger labs and TryHackMe rooms with validated writeups and related skills.

# Directory / Path Traversal

This page aggregates **cross-platform resources to practice Directory / Path Traversal**: retired Hack The Box machines, PortSwigger Web Security Academy labs and TryHackMe rooms, plus curated resources (HackTricks, PortSwigger, etc.) and related skills.

## Curated resources

| Source      | Link                                                                                                                 |
| ----------- | -------------------------------------------------------------------------------------------------------------------- |
| PortSwigger | [https://portswigger.net/web-security/file-path-traversal](https://portswigger.net/web-security/file-path-traversal) |

## HTB machines practicing Directory / Path Traversal (4)

| Machine                                           | OS      | Difficulty                                       |
| ------------------------------------------------- | ------- | ------------------------------------------------ |
| [Arctic](/en/htb/machines/windows/facil/arctic)   | Windows | <span className="dbadge dbadge-easy">EASY</span> |
| [Blunder](/en/htb/machines/linux/facil/blunder)   | Linux   | <span className="dbadge dbadge-easy">EASY</span> |
| [Feline](/en/htb/machines/linux/dificil/feline)   | Linux   | <span className="dbadge dbadge-hard">HARD</span> |
| [ServMon](/en/htb/machines/windows/facil/servmon) | Windows | <span className="dbadge dbadge-easy">EASY</span> |

## PortSwigger labs practicing Directory / Path Traversal (8)

| Lab                                                                                                                                                          | Difficulty                                                 | Topic                       | Official                                                                                                      |
| ------------------------------------------------------------------------------------------------------------------------------------------------------------ | ---------------------------------------------------------- | --------------------------- | ------------------------------------------------------------------------------------------------------------- |
| [File path traversal, simple case](/en/portswigger/labs/file-path-traversal/simple)                                                                          | <span className="dbadge dbadge-easy">APPRENTICE</span>     | Directory / Path Traversal  | [Open](https://portswigger.net/web-security/file-path-traversal/lab-simple)                                   |
| [File path traversal, traversal sequences blocked with absolute path bypass](/en/portswigger/labs/file-path-traversal/absolute-path-bypass)                  | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Directory / Path Traversal  | [Open](https://portswigger.net/web-security/file-path-traversal/lab-absolute-path-bypass)                     |
| [File path traversal, traversal sequences stripped non-recursively](/en/portswigger/labs/file-path-traversal/sequences-stripped-non-recursively)             | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Directory / Path Traversal  | [Open](https://portswigger.net/web-security/file-path-traversal/lab-sequences-stripped-non-recursively)       |
| [File path traversal, traversal sequences stripped with superfluous URL-decode](/en/portswigger/labs/file-path-traversal/superfluous-url-decode)             | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Directory / Path Traversal  | [Open](https://portswigger.net/web-security/file-path-traversal/lab-superfluous-url-decode)                   |
| [File path traversal, validation of file extension with null byte bypass](/en/portswigger/labs/file-path-traversal/validate-file-extension-null-byte-bypass) | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Directory / Path Traversal  | [Open](https://portswigger.net/web-security/file-path-traversal/lab-validate-file-extension-null-byte-bypass) |
| [File path traversal, validation of start of path](/en/portswigger/labs/file-path-traversal/validate-start-of-path)                                          | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Directory / Path Traversal  | [Open](https://portswigger.net/web-security/file-path-traversal/lab-validate-start-of-path)                   |
| [JWT authentication bypass via kid header path traversal](/en/portswigger/labs/jwt/jwt-authentication-bypass-via-kid-header-path-traversal)                  | <span className="dbadge dbadge-medium">PRACTITIONER</span> | JWT (JSON Web Tokens)       | [Open](https://portswigger.net/web-security/jwt/lab-jwt-authentication-bypass-via-kid-header-path-traversal)  |
| [Web shell upload via path traversal](/en/portswigger/labs/file-upload/file-upload-web-shell-upload-via-path-traversal)                                      | <span className="dbadge dbadge-medium">PRACTITIONER</span> | File Upload Vulnerabilities | [Open](https://portswigger.net/web-security/file-upload/lab-file-upload-web-shell-upload-via-path-traversal)  |

## TryHackMe rooms practicing Directory / Path Traversal (5)

| Room                                                                                         | Difficulty                                         | Type        | Access  | Official                                                                   |
| -------------------------------------------------------------------------------------------- | -------------------------------------------------- | ----------- | ------- | -------------------------------------------------------------------------- |
| [Advent of Cyber 3 (2021)](/en/tryhackme/rooms/adventofcyber3)                               | <span className="dbadge dbadge-easy">EASY</span>   | Walkthrough | 🟢 Free | [Open](https://tryhackme.com/room/adventofcyber3)                          |
| [Badbyte](/en/tryhackme/rooms/badbyte)                                                       | <span className="dbadge dbadge-easy">EASY</span>   | Walkthrough | 🟢 Free | [Open](https://tryhackme.com/room/badbyte)                                 |
| [File Inclusion](/en/tryhackme/rooms/fileinc)                                                | <span className="dbadge dbadge-easy">MEDIUM</span> | Walkthrough | 🔵 VIP  | [Open](https://tryhackme.com/room/fileinc)                                 |
| [File Inclusion, Path Traversal](/en/tryhackme/rooms/filepathtraversal)                      | <span className="dbadge dbadge-easy">MEDIUM</span> | Walkthrough | 🔵 VIP  | [Open](https://tryhackme.com/room/filepathtraversal)                       |
| [Splunk Basics - Did you SIEM?](/en/tryhackme/rooms/splunkforloganalysis-aoc2025-x8fj2k4rqp) | <span className="dbadge dbadge-easy">MEDIUM</span> | Walkthrough | 🟢 Free | [Open](https://tryhackme.com/room/splunkforloganalysis-aoc2025-x8fj2k4rqp) |

## Related skills

* [/en/skills/lfi](/en/skills/lfi)

***

← [Back to the full glossary](/en/glossary)

<script type="application/ld+json">
  {`{"@context":"https://schema.org","@type":"DefinedTerm","name":"Directory / Path Traversal","termCode":"directory-traversal","inLanguage":"en","url":"https://rootea.es/en/skills/directory-traversal","inDefinedTermSet":{"@type":"DefinedTermSet","name":"Tactical pentesting glossary","url":"https://rootea.es/en/glossary"}}`}
</script>

<script type="application/ld+json">
  {`{"@context":"https://schema.org","@type":"ItemList","name":"HTB machines practicing Directory / Path Traversal","numberOfItems":4,"itemListElement":[{"@type":"ListItem","position":1,"url":"https://rootea.es/en/htb/machines/windows/facil/arctic","name":"Arctic"},{"@type":"ListItem","position":2,"url":"https://rootea.es/en/htb/machines/linux/facil/blunder","name":"Blunder"},{"@type":"ListItem","position":3,"url":"https://rootea.es/en/htb/machines/linux/dificil/feline","name":"Feline"},{"@type":"ListItem","position":4,"url":"https://rootea.es/en/htb/machines/windows/facil/servmon","name":"ServMon"}]}`}
</script>

*Last updated: 2026-06-07*
