6 min read
Defending against SSRF attacks (with help from our bug bounty program)
Over the past few years, server-side request forgery (SSRF) has received an increasing amount of attention from security researchers. With SSRF, an
Tag : Ssrf
6 min read
Double-check Inputs to Avoid SSRF Vulnerability
Attackers use SSRF, a web application vulnerability, to bring about a request from the server-side application to a random domain; usually, attackers
1 min read
CWE-918
Server-Side Request Forgery (SSRF)Image by Edgar Oliver from PixabayServer-side request forgeries (SSRF) occur when the web application sends a
1 min read
HTB: Jarmis
My favorite part about Jarmis was that it is centered around this really neat technology used to fingerprint and identify TLS servers. There’s
1 min read
HTB: Love
Love was a solid easy-difficulty Windows box, with three stages. First, I’ll use a simple SSRF to get access to a webpage that is only allowed
1 min read
HTB: Cereal
Cereal was all about takign attacks I’ve done before, and breaking the ways I’ve previously done them so that I had to dig deeper and really
Vulmap – Web Vulnerability Scanning And Verification Tools
Vulmap is a vulnerability scanning tool that can scan for vulnerabilities in Web containers, Web servers, Web middleware, and CMS and other Web
1 min read
Report URI Penetration Test
In line with our constant desire to improve and offer the best service we can, Report URI recently went through an independent penetration test as
N1QLMap – Exfiltrate Data From Couchbase Database By Exploiting N1QL Injection Vulnerabilities
N1QLMap is an N1QL exploitation tool. Currently works with Couchbase database. The tool supports data extraction and performing SSRF attacks
1 min read
Garud – Scan Sub-Domains, Sub-Domain Takeover with XSS, SSTI, SSRF
An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point
Eagle – Yet Another Vulnerability Scanner
Project Eagle is a plugin based vulnerabilities scanner with threading support used for detection of low-hanging bugs on mass scale
16 min read
Travel - Hack The Box
Travel is an awesome box from my ATeam teammates xct and jkr. The box has a code review part where we analyze the source code of a PHP web app to
Parth – Heuristic Vulnerable Parameter Scanner
Some HTTP parameter names are more commonly associated with one functionality than the others. For example, the parameter ?url= usually
2 min read
ParamSpider – Mining Parameters From Dark Corners Of Web Archives
ParamSpider : Parameter miner for humans. Key Features : Finds parameters from web archives of the entered domain. Finds parameters from
9 min read
Forwardslash - Hack The Box
Forwardslash starts off like most classic Hack The Box machines with some enumeration of vhosts, files and directories with gobuster then we use a