HackTheBox - Forge
Bypass SSRF filters using domain redirection and abusing Python PDB
Bypass SSRF filters using domain redirection and abusing Python PDB
Another late CTF writeups for H@cktivitycon 2021 web category.
Basic things you can do with SSRF
Turns SSRF to remote code execution and escape from a Docker container
Exploiting an insecure deserialization on Jackson library and how to mitigate it