From a lame SSRF to a full $4000 RCE

https://is1-ssl.mzstatic.com/image/thumb/Podcasts123/v4/7a/f1/5e/7af15ead-0aba-213a-1052-9f54a5a346b0/mza_3496604499725780714.jpg/600x600bb.jpg

Hack for Fun and Profit

thehackerish

11 episodes

6 days ago

Hack for Fun and Profit is a weekly podcast for anyone who is interested in ethical hacking. The topics include bug bounty hunting, penetration testing, red teaming and many more. Sit back and enjoy stories, tips and tricks that will inspire you. For subscription-only episodes, enroll using this link: https://anchor.fm/thehackerish/subscribe

How To

Education

RSS

All content for Hack for Fun and Profit is the property of thehackerish and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

How To

Education

https://d3t3ozftmdmh3i.cloudfront.net/production/podcast_uploaded_nologo/4323455/4323455-1585678150553-ad7665202020c.jpg

From a lame SSRF to a full $4000 RCE

Hack for Fun and Profit

9 minutes 49 seconds

5 years ago

From a lame SSRF to a full $4000 RCE

Hello ethical hackers and bug bounty hunters! Welcome to this bug bounty write-up where I show you how I found a Server-Side Request Forgery vulnerability (SSRF). Then, I will explain how I was able to escalate it to obtain a Remote Code Execution (RCE). Finally, you will see how it is possible to gain a full SSH shell on the vulnerable server.

If all this seems intimidating for you, let me tell you that shouldn’t be; just make sure you stick with me until the end. I promise you are going to learn many things today!

Read more on https://thehackerish.com/bug-bounty-write-up-from-ssrf-to-4000/

Download your FREE Web hacking LAB: https://thehackerish.com/owasp-top-10-lab-vm-free

Facebook Page: https://www.facebook.com/thehackerish