Escape API
June 30, 2021 ยท View on GitHub
an API for escaping html, shell and path queries
Documentation
parameters
- method escaping method
- data string to be escaped
available methods
| Method | Description | Type | Prevention |
|---|---|---|---|
| html | HTML escape | string | XSS |
| shell | UNIX bourne shell escape | string | os command injection |
| path | UNIX path escape | string | directory traversal |
examples
curl "https://s.polarspetroll.repl.co/api?method=html&data=<>/>,test'"
output :
{
"ok":true,
"data":"<>/>,test'"
}
curl "https://s.polarspetroll.repl.co/api?method=shell&data=ls -la | cat /etc/passwd"
output:
{
"ok":true,
"data":"ls\\ -la\\ \\|\\ cat\\ /etc/passwd"
}
curl "https://s.polarspetroll.repl.co/api?method=path&data=../../../../../../../etc/passwd"
output:
{
"ok":true,
"data":"./././././././etc/passwd"
}