We are independent & ad-supported. We may earn a commission for purchases made through our links.
WiseGEEK

Advertiser Disclosure

Our website is an independent, advertising-supported platform. We provide our content free of charge to our readers, and to keep it that way, we rely on revenue generated through advertisements and affiliate partnerships. This means that when you click on certain links on our site and make a purchase, we may earn a commission. Learn more.

How We Make Money

We sustain our operations through affiliate commissions and advertising. If you click on an affiliate link and make a purchase, we may receive a commission from the merchant at no additional cost to you. We also display advertisements on our website, which help generate revenue to support our work and keep our content free for readers. Our editorial team operates independently from our advertising and affiliate partnerships to ensure that our content remains unbiased and focused on providing you with the best information and recommendations based on thorough research and honest evaluations. To remain transparent, we’ve provided a list of our current affiliate partners here.
Technology

What is a Directory Traversal?

By Jessica Susan Reuter
Updated May 17, 2024
Our promise to you
WiseGEEK is dedicated to creating trustworthy, high-quality content that always prioritizes transparency, integrity, and inclusivity above all else. Our ensure that our content creation and review process includes rigorous fact-checking, evidence-based, and continual updates to ensure accuracy and reliability.

Our Promise to you

Founded in 2002, our company has been a trusted resource for readers seeking informative and engaging content. Our dedication to quality remains unwavering—and will never change. We follow a strict editorial policy, ensuring that our content is authored by highly qualified professionals and edited by subject matter experts. This guarantees that everything we publish is objective, accurate, and trustworthy.

Over the years, we've refined our approach to cover a wide range of topics, providing readers with reliable and practical advice to enhance their knowledge and skills. That's why millions of readers turn to us each year. Join us in celebrating the joy of learning, guided by standards you can trust.

Editorial Standards

At WiseGEEK, we are committed to creating content that you can trust. Our editorial process is designed to ensure that every piece of content we publish is accurate, reliable, and informative.

Our team of experienced writers and editors follows a strict set of guidelines to ensure the highest quality content. We conduct thorough research, fact-check all information, and rely on credible sources to back up our claims. Our content is reviewed by subject matter experts to ensure accuracy and clarity.

We believe in transparency and maintain editorial independence from our advertisers. Our team does not receive direct compensation from advertisers, allowing us to create unbiased content that prioritizes your interests.

A directory traversal is a process by which the contents of computer folders, or directories, are systematically scanned through. For both developers and novice computer users, a directory traversal can yield a great deal of useful information. This methodology is used in a variety of computer applications, including file searches in an operating system.

When performing a directory traversal, the process begins in the "working directory." Many directory traversals are recursive, meaning that they scan the contents of the working directory as well as the contents of every separate folder, or subdirectory, the working directory contains. Recursive directory traversals can easily identify large groups of files with similar characteristics. A directory traversal may also be used to select specific file types for analysis, modification, or deletion.

Traversals can be done in two different ways. The first traversal method, which is usually performed by all computer users at some point, is done through an operating system's user interface. Precisely how this is done depends on the operating system but in this context, traversing directories is often as simple as clicking into a folder, then clicking into a folder within that folder, and so forth. Since the speed of this approach is limited by how fast a user can manually go through directories, it is usually the slower of the two traversal methods.

Programmers and developers usually employ the second traversal method, which entails giving explicit commands to the operating system, rather than using its interface. This method is more flexible than interface-based traversal, and can often be linked with other operating system commands to access and modify many files at once. In general, most computer users do not need to do traversals this way, although the option is almost always there.

Though directory traversals can be very useful, they have the potential to be exploited by malicious code, particularly in web pages. When programming web sites, web designers must often take great care to ensure that no unauthorized directory traversals can be done by a client viewing a web page. Since a directory traversal has the potential to showcase a lot of information, allowing a client to access a web page's component directories could pose a significant security risk. Directory traversals are not dangerous or malicious in themselves, so scanning through directories as a trusted user on a computer does not automatically endanger a computer or its data. In almost all contexts, directory traversals are safe, useful methods for getting information from a computer.

WiseGEEK is dedicated to providing accurate and trustworthy information. We carefully select reputable sources and employ a rigorous fact-checking process to maintain the highest standards. To learn more about our commitment to accuracy, read our editorial process.
See our Editorial Process Share Feedback

Related Articles

Discussion Comments

WiseGEEK, in your inbox

Our latest articles, guides, and more, delivered daily.

WiseGEEK, in your inbox

Our latest articles, guides, and more, delivered daily.