coelner/hacktricks
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

GitBook: [#3109] No subject

Browse Source
This commit is contained in:
CPol 2022-04-20 09:04:20 +00:00 committed by gitbook-bot
parent 89f8360a15
commit 5962653a5f
No known key found for this signature in database
GPG Key ID: 07D2180C7B12D0FF
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
pentesting-web/ssrf-server-side-request-forgery/url-format-bypass.md
View File

@ -143,6 +143,16 @@ http://1.1.1.1 &@2.2.2.2# @3.3.3.3/
next={domain}&next=attacker.com
```
### Paths and Extensions Bypass
If you are required that the URL must end in a path or an extension, or must contain a path you can try one of the following bypasses:
```
https://metadata/vulerable/path#/expected/path
https://metadata/vulerable/path#.extension
https://metadata/expected/path/..%2f..%2f/vulnerable/path
```
### Bypass via redirect
It might be possible that the server is **filtering the original request** of a SSRF **but not** a possible **redirect** response to that request.\