Basic SSRF against another back-end system

By /
Basic SSRF against another back-end system

Basic SSRF against another back-end system

1: Access the Lab.

Website: https://portswigger.net/web-security/ssrf/lab-basic-ssrf-against-backend-system

Basic SSRF against another back-end system 1

2: Open the Burp Suite.

3: Select the product.

Basic SSRF against another back-end system 2

4: Check the product stock.

Basic SSRF against another back-end system 3

5: Copy the URL.

URL: http://192.168.0.1:8080

Basic SSRF against another back-end system 4

6: Send the Request to the Intruder.

Shortcut key: Ctrl + I

Basic SSRF against another back-end system 5

7: Remove the stockApi.

8: Add the URL.

URL: http://192.168.0.1:8080/admin

9: Add the 1 for the Brute force attack.

Basic SSRF against another back-end system 6

10: Go to the Payloads.

11: Set the Payload type.

Basic SSRF against another back-end system 7

12: Start the Attack.

13: Check the Response.

14: Find the <a href=”/http://192.168.0.226:8080/admin/delete?username=carlos”> parameter in the Pretty (Response).

URL: http://192.168.0.226:8080/admin/delete?username=carlos

Basic SSRF against another back-end system 8

15: You can also check the admin panel in the Render (Response).

Basic SSRF against another back-end system 9

16: Copy the URL.

URL: http://192.168.0.233:8080/admin/delete?username=carlos

17: Send the stockApi into the Repeater.

Shortcut key: Ctrl + R

Basic SSRF against another back-end system 10

18: Remove the stockApi and paste the URL.

URL: http://192.168.0.226:8080/admin/delete?username=carlos

19: Send the Request.

Basic SSRF against another back-end system 11

20: The Lab is completed.

PortSwigger Labs

Must Read

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top