What is an SSRF

What does SSRF stand for?

Server-Side Request Forgery

As opposed to a regular SSRF, what is the other type?

Blind

SSRF Examples

What is the flag from the SSRF Examples site?

Follow and read the instructions. On the last tab you have to manipulate the request to the server. Exchange the "api"-part of the url with "server.website.thm/flag?id=9&x=" and you get the flag.

THM{SSRF_MASTER}

Finding an SSRF

What website can be used to catch HTTP requests from a server?

requestbin.com

Defeating Common SSRF Defenses

What method can be used to bypass strict rules?

Open Redirect

What IP address may contain sensitive data in a cloud environment?

169.254.169.254

What type of list is used to permit only certain input?

Allow List

What type of list is used to stop certain input?

Deny List

SSRF Practical

What is the flag from the /private directory?

Follow the instructions and decode the base64-code to get the flag.

THM{YOU_WORKED_OUT_THE_SSRF}