all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SSRF filter bypass

Add to bookmarks
May 9, 2023, 12:52 p.m. | Josewice7

System Weakness - Medium systemweakness.com

Hello, my name is W1C3 and today, I am going to explain how to obtain arbitrary file read access through Server-Side Request Forgery (SSRF) by bypassing filter. This challenge was developed for the WaniCTF.

Name

Screenshot

Description

An application that takes screenshots of your favorite websites.

Walkthrough

Upon accessing the website, it can be observed that it is a very simple page. Its sole functionality is to receive a URL, access the URL using a web browser, and take …

access application bypass bypassing challenge ctf ctf-writeup cybersecurity ethical hacking file filter forgery hello name request screenshots server server-side request forgery simple ssrf website websites

Visit resource

More from systemweakness.com / System Weakness - Medium

Zero Trust Network Access 5 hours ago | systemweakness.com
least privilege microsegmentation network security virtual private network +1
Ransomware-as-a-Service: Democratizing Digital Destruction and How to Fortify Your Defenses 5 hours ago | systemweakness.com
as-a-service attacks businesses critical +24
Detecting Mobile Threats: Indicators of Compromise 5 hours ago | systemweakness.com
business compromise continue cybersecurity +13
Keeper Write-up 5 hours ago | systemweakness.com
access can compromise credential +27
Sau Write-up 5 hours ago | systemweakness.com
access com command command injection +24
Managed Detection and Response (MDR) 1 day, 5 hours ago | systemweakness.com
and response businesses continuous continuous monitoring +30
The Growing Threat of Supply Chain Attacks 1 day, 5 hours ago | systemweakness.com
attacks cyberattacks cybersecurity cybersecurity awareness +24
Polymorphic Code 1 day, 5 hours ago | systemweakness.com
challenges change changing code +14
DIY Advanced IoT Password Vault Synced With Desktop App Via Google Firebase 1 day, 5 hours ago | systemweakness.com
cloud storage cybersecurity firebase microcontrollers +1

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Director, Threat and Attack Research

@ Singtel | Macquarie Park, Australia
View on infosec-jobs.com

Manager Information Security

@ Diebold Nixdorf | Remote, United States
View on infosec-jobs.com

Senior Analyst, IT Information Security

@ IHG | GA, United States
View on infosec-jobs.com

Eurizon Capital SGR - Compliance Senior Specialist

@ Intesa Sanpaolo | Milano, IT
View on infosec-jobs.com

Tier 1 Fusion Security Analyst

@ Nielsen | Bengaluru, India
View on infosec-jobs.com
View more jobs