Mirrors/hacktricks
2
0
Fork 0
mirror of https://github.com/carlospolop/hacktricks synced 2024-11-25 06:00:40 +00:00
Code Issues Projects Releases Packages Wiki Activity

GitBook: [#3109] No subject

Browse source
This commit is contained in:
CPol 2022-04-20 09:04:20 +00:00 committed by gitbook-bot
parent 89f8360a15
commit 5962653a5f
No known key found for this signature in database
GPG key ID: 07D2180C7B12D0FF
1 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
pentesting-web/ssrf-server-side-request-forgery/url-format-bypass.md
View file

@ -143,6 +143,16 @@ http://1.1.1.1 &@2.2.2.2# @3.3.3.3/
next={domain}&next=attacker.com
```
### Paths and Extensions Bypass
If you are required that the URL must end in a path or an extension, or must contain a path you can try one of the following bypasses:
```
https://metadata/vulerable/path#/expected/path
https://metadata/vulerable/path#.extension
https://metadata/expected/path/..%2f..%2f/vulnerable/path
```
### Bypass via redirect
It might be possible that the server is **filtering the original request** of a SSRF **but not** a possible **redirect** response to that request.\