Introduction This is our 5th article on Blind SSRF. In this lab, we will be solving the Blind SSRF with out-of-band detection lab. It is provided by PortSwigger Web Security for practice. Lab Description Lab … Read more
Introduction In this article, we are going to solve the Blind SSRF with Shell Shock Exploitation lab. This is our 7th lab or 6th article on server-side request forgery. Lab Description This lab contains analytics … Read more
Introduction In this article, we are going to solve the SSRF with whitelist-based input filter lab. This is part 6 of the SSRF series and the labs we are practicing on are from PortSwigger Web … Read more
Lab Description Today, we will solve a lab that is about basic SSRF against another back-end system. The lab has a stock check feature that fetches data from the internal system. This lab is vulnerable … Read more
Lab Description So, today we will be solving the 4th lab of SSRF filter bypass via open redirection vulnerability. This lab has a stock check feature that fetches data from the internal system. To solve … Read more
Introduction The article covers SSRF with blacklist-based input filter. In this lab, we will use various techniques to solve it. The developer has set up security defenses in the lab that we will bypass. Lab … Read more
Introduction Server-side request forgery (SSRF) is a vulnerability found in websites and web applications. This vulnerability allows an attacker to trick a website into sending requests to another server on the internet. Due to SSRF, … Read more
Information disclosure vulnerabilities or Information Leakage is a web vulnerability we have, in which personal information on our website is exposed on the internet. This information could be users’ details, website-related files, or data that … Read more