public
  • Description
    • Whoami
  • 💻Plataform
    • Portswigger Academy
      • SQL Injection
        • SQL Injection Authentication Bypass
        • SQL injection vulnerability in WHERE clause allowing retrieval of hidden data
        • Blind SQL injection with conditional errors
      • SSRF
        • Lab 1: Basic SSRF against the local server
      • XSS ( Cross-Site Scripting )
      • IDOR
      • Insecure Deserialization
      • JWT ( Json Web Token )
      • Access Control Vulnerabilities
      • Directory Traversal
      • OS Command Injection
    • ROP Emporium
      • Ret2Win
      • Split
      • Callme
  • By Topics
    • Cryptography
      • Mini RSA
Powered by GitBook
On this page
  1. Plataform
  2. Portswigger Academy

SSRF

Server-side request forgery

PreviousBlind SQL injection with conditional errorsNextLab 1: Basic SSRF against the local server

Last updated 1 year ago

SSRF is an attack vector that abuses an application to interact with the internal/external network or the local machine. As the name suggests, SSRF works by crafting a forged request from the server's side. One of the facilitators of this vector is the mishandling of URLs, as demonstrated in the following examples:

  • Image on an external server (for example, the user inputs the URL of their avatar image for the application to download and use).

  • Custom WebHook (users need to specify WebHook handlers or callback URLs).

  • Internal requests to interact with another service to fulfill a specific functionality. Most of the time, user data is sent to be processed, and if mishandled, it can perform specific injection attacks.

💻
Lab 1: Basic SSRF against the local server
SSRF