all InfoSec news
10.3 Lab: SSRF with blacklist-based input filter | 2024
March 4, 2024, 5:38 a.m. | Karthikeyan Nagaraj
InfoSec Write-ups - Medium infosecwriteups.com
This lab has a stock check feature which fetches data from an internal system. To solve the lab, change the stock check URL to access the admin interface at http://localhost/admin and delete the user carlos. The developer has deployed two weak anti-SSRF defenses that you will need to bypass | Karthikeyan Nagaraj
https://medium.com/media/a5ad6e661c3826fced331d88f0184c6d/hrefDescription
This lab has a stock check feature which fetches data from an internal system.
To solve the lab, change the stock check URL to access the …
More from infosecwriteups.com / InfoSec Write-ups - Medium
Mitigating Malware
5 days, 1 hour ago |
infosecwriteups.com
Building Own Nuclei Templates
5 days, 1 hour ago |
infosecwriteups.com
Static Testing of iOS Applications
5 days, 1 hour ago |
infosecwriteups.com
Install Nuclei | Tool
5 days, 1 hour ago |
infosecwriteups.com
Install Subfinder |Tool
5 days, 1 hour ago |
infosecwriteups.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Senior Security Researcher - Linux MacOS EDR (Cortex)
@ Palo Alto Networks | Tel Aviv-Yafo, Israel
Sr. Manager, NetSec GTM Programs
@ Palo Alto Networks | Santa Clara, CA, United States
SOC Analyst I
@ Fortress Security Risk Management | Cleveland, OH, United States