top of page

Mysite 1 Group

Public·25 members
Konstantin Muravyov
Konstantin Muravyov

Blind SSRF Exploitation



Let us create an HTML file containing a link to a service under our control to test if the application is vulnerable to a blind SSRF vulnerability. This service can be a web server hosted in a machine we own, Burp Collaborator, a Pingb.in URL etc. Please note that the protocols we can use when utilizing out-of-band techniques include HTTP, DNS, FTP, etc.




Blind SSRF exploitation


Download: