Server Side Request Forgery SSRF

Name: Server Side Request Forgery SSRF
Uploaded: Mar 16, 2022
Duration: 674 s

PseudoTime1.31K subscribers

3.3K views

Mar 16, 2022

11:14

Server Side Request Forgery (SSRF) - Low Level Security. Solution: 1. Port scan hosts on the internal network using RFI. Step 1. Click on port scan - A new window with url (http://10.0.2.4/evil/ssrf-1.txt) with pop up. Step 2. In new tab open bWAPP lesson Remote & Local File Inclusion (RFI/LFI)- Note : url before clicking on Go - http://10.0.2.4/bWAPP/rlfi.php Click on Go url after clicking on go - http://10.0.2.4/bWAPP/rlfi.php?language=lang_en.php&action=go Remove lang_en.php and Replace it with http://10.0.2.4/evil/ssrf-1.txt&ip=10.0.2.4 (For more details refer video) On your Laptop/Destop keyboard - Click on enter button. Check out the results. 2. Access resources on the internal network using XXE. Step 1. On the lesson page, click on Access A new window will open with url - http://10.0.2.4/evil/ssrf-2.txt *Note: I am using BurpSuite pre configured browser, in case if you are not using the pre configured browser then please configure the browser with proxy and then follow the below steps. Step 2. Note we have to perform 2 actions. Accesses a file on the internal network (1) and Accesses a file on the internal network (2) Step 3. Go to the SQL Injection - Stored (XML) Page a. Click on Any bugs button and pass the request through BurpSuite b. Right click and send the request to the repeater tab c. Click on send and check the response d. Remove and replace the code as shown in the video e. Click on send and check the output f. Replace the code with second code and g. Follow steps as shown in the video h. Copy the response and click on the Decoder tab i. Decode as Base 64 - Check the output 3. Crash my Samsung SmartTV (CVE-2013-4890) using XXE :) *Note:- To execute this vulnerability you will need a Samsung TV. As I don't have the Samsung TV to test this vulnerability details not coverd in this video. ** If you want to execute the vulnerability you can download the code from url: https://github.com/r00t-3xp10it/Samsung-TV-Denial-of-Service-DoS-Attack and For the P.O.C you can refer YouTube video: https://www.youtube.com/watch?v=U-R2epNnUiM PseudoTime

Download

0 formats

No download links available.