Server Side Request Forgery(SSRF){port issue hidden approch }

what are some SSRF Actions >>

  • Abuse the trust relationship between the vulnerable server and others.
  • Bypass IP whitelisting.
  • Bypass host-based authentication services.
  • Read resources which are not accessible to the public.
  • Scan the internal network to which the server is connected.
  • Read files from the web server.
  • View Status Pages and interact with APIs as the web server.
  • Retrieve sensitive information such as the IP address of a web server behind a reverse proxy.
To add external job link
  1. I had two choices to check, so first I will check it with burp-collaborator you can read more about below link given and other by manual check by port ..
Received DNS lookup
400 bad request on port 443
on port 22

--

--

Love podcasts or audiobooks? Learn on the go with our new app.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store