-
Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.
ssrf
-
TProxer: Burp Suite extension to find reverse proxy path based SSRF
A Burp Suite extension was made to automate the process of finding reverse proxy path-based SSRF. Hidden content- itsMe
- Thread
- based burp extension find path proxy reverse ssrf suite tproxer:
- Replies: 0
- Forum: Pentesting
-
BurpParamFlagger: indicate a possible insertion point for SSRF or LFI
BurpParamFlagger A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or LFI. Note: I believe that Burp Pro is required to use this extension since it adds to the scanner functionality, which isn’t included in the...- itsMe
- Thread
- burpparamflagger: for indicate insertion lfi point possible ssrf
- Replies: 0
- Forum: Pentesting
-
ssrf-king: Automates SSRF Detection in all of the Request
ssrf-king SSRF plugin for burp that Automates SSRF Detection in all of the Request Upcoming Features Checklist ✔️ It will soon have a user Interface to specify your own call back payload It will soon be able to test Json & XML Features ✔️ Test all of the requests for any...- itsMe
- Thread
- all automates detection request ssrf ssrf-king:
- Replies: 0
- Forum: Pentesting
-
lorsrf: Bruteforcing on Hidden parameters to find SSRF vulnerability
lorsrf Bruteforcing on Hidden parameters to find SSRF vulnerability using GET and POST Methods. Hidden content- itsMe
- Thread
- bruteforcing find hidden lorsrf: parameters ssrf vulnerability
- Replies: 0
- Forum: Pentesting
-
SSRFire: automated SSRF finder
SSRFIRE An automated SSRF finder. Just give the domain name and your server and chill! 😉 It also has options to find XSS and open redirects. Finding XSS Warning: This generates a lot of traffic. Do not use this against the sites which you are not authorized to test This tests all the URLs...- itsMe
- Thread
- automated finder ssrf ssrfire:
- Replies: 0
- Forum: Pentesting
-
1
Exploits Open-Xchange OX App Suite SSRF / XSS / Information Disclosure / Access Controls
Various Open-Xchange OX App Suite versions suffer from server-side request forgery, cross site scripting, information disclosure, and improper access control vulnerabilities. View the full article- 1337day-Exploits
- Thread
- access app controls disclosure exploits information open-xchange ssrf suite xss
- Replies: 0
- Forum: Exploit Development & Bugs
-
SSRF Vulnerable Lab
Server-Side Request Forgery (SSRF) vulnerable Lab This repository contain PHP codes which are vulnerable to Server-Side Request Forgery (SSRF) attack. I would like to say Thank You to @albinowax, AKReddy, Vivek Sir (For being great personalities who always supported me), Andrew Sir -...- dEEpEst
- Thread
- lab ssrf vulnerable
- Replies: 0
- Forum: Hacking Tools
-
Tools B-XSSRF
Toolkit to detect and keep track on Blind XSS, XXE & SSRF SETUP Upload the files to your server. Create a Database and upload database.sql file to it. Change the DB Credentials in db.php file. Ready. USAGE BLIND XSS <embed...- 0x1
- Thread
- b-xssrf blind xss ssrf xxe
- Replies: 0
- Forum: Protection Tools
-
1
Exploits Zimbra Collaboration Autodiscover Servlet XXE / ProxyServlet SSRF
This Metasploit module exploits an XML external entity vulnerability and a server side request forgery to get unauthenticated code execution on Zimbra Collaboration Suite. The XML external entity vulnerability in the Autodiscover Servlet is used to read a Zimbra configuration file that contains...- 1337day-Exploits
- Thread
- autodiscover collaboration exploits proxyservlet servlet ssrf xxe zimbra
- Replies: 0
- Forum: Exploit Development & Bugs
-
SSRFmap - Automatic SSRF Fuzzer And Exploitation Tool
SSRF are often used to leverage actions on other services, this framework aims to find and exploit these services easily. SSRFmap takes a Burp request file as input and a parameter to fuzz. Hidden content- itsMe
- Thread
- and automatic exploitation fuzzer ssrf ssrfmap tool
- Replies: 0
- Forum: Pentesting
-
1
Exploits Open-Xchange OX App Suite Cross Site Scripting / SSRF
Open-Xchange OX App Suite suffers from cross site scripting and server-side request forgery vulnerabilities. The vulnerabilities spawn a multitude of versions. View the full article- 1337day-Exploits
- Thread
- app cross exploits open-xchange scripting site ssrf suite
- Replies: 0
- Forum: Exploit Development & Bugs
ssrf
