Server-Side Request Forgery (SSRF)- PortSwigger Labs

Lab: Blind SSRF with out-of-band detection

SSRF Attack Lifecycle

Lab: Blind SSRF with out-of-band detection

This site uses analytics software that fetches the URL specified in the Referer header when a product page is loaded.

--

--

--

Security Researcher [RED&BLUE]

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

The Security Reasoning Behind the Massive Cloud ERP Migration

Obligatory XKCD Reference

PolyStarter — Tokenomics

{UPDATE} zMahjong Super Solitaire SZY Hack Free Resources Generator

002_Practice with GNS3 LocalAreaNetworks

Post Black Hat / Def Con Q&A With Jack Rhysider from Darknet Diaries

HASHLAND COMMUNITY Hash Warfare Free to Play to Earn!!!

VulnHub Writeup: HMS

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Michael Koczwara

Michael Koczwara

Security Researcher [RED&BLUE]

More from Medium

Server-Side Request Forgery (SSRF)- PortSwigger Labs

CrowSec EdTech Write-Up: Poisoning

TryHackMe — Network Services — SMB

Proving Grounds — DC-1