SSRF
Last updated
Was this helpful?
Last updated
Was this helpful?
Bypass SSRF Protection using Domain CNAME A Record:
Bypass SSRF Protection using HTTP Redirect:
SSRF Payloads for AWS:
Gopherus:
This tool will help you to generate Gopher payload for exploiting SSRF (Server Side Request Forgery) and gaining RCE (Remote Code Execution). And also it will help you to get the Reverse shell on the victim server.
Basic Attack [ref1]
Bypass SSRF with special char [ref1]
Bypass SSRF Domain CNAME & A-Record [ref1]
Bypass SSRF HTTP Redirect [ref1]
SSRF with ESIi [ref1]
Hahwul's SSRF cheatsheet:
This script takes a domain name and a callback server, parses links , appends SSRF parameters and fire the requests.
[ref1] :