Server-Side Request Forgery

Question

I need help with step 5 and 6 of Server-Side Request Forgery lab. I was able to find the location of potential SSRF i.e "lookup?url=http://localhost:3000/online" after that I have tried directory traversal and other methods in place of HTTP (FTP). Nothing seems to working to get the bot name/service account

tillycorless · Answer

Hi Akshay&nbsp;
Please let me speak with the lab author and come back to you.

nyeprior · Answer

Hey&nbsp;Akshay&nbsp;- there is a very rudimentary text-based filter in place on the application, and as a small hint, I'll let you know that this filter is&nbsp;case-sensitive.&nbsp;Let me know if that helps at all 🙂

akshay · Answer

I have already attempted to capitalize each character individually on the endpoints '/lookup?url=http://localhost:3000' and '/lookup?url=http://localhost:3000/online'. Am I using the correct endpoints?

nyeprior · Answer

If you take a look at the 'In this lab' section of the briefing panel, it'll give you the URL you need to access:

To test the application, they've added a remote debug service to the server, the configuration of which can be found in the root directory (http://localhost:3000/[bot-name]/config)&nbsp;

So, you'll need to identify the bot's name before you'll have the specific URL to try and access. You can find that information on the homepage of the application 🙂

Forum Discussion

Server-Side Request Forgery

Related Content

Re: I Have Registered For Cyber Million But No Longer Wish To Keep My Account. How Can I Delete It?

Re: Delete Cyber Million Account

Re: Question about my Cyber Million job application

Re: How Can I Contact The Prospective Employer If I Have A Question?

Re: IoT & Embedded Devices: Certificate Underpinning

Recent Discussions

SuperSonic: Ep.6 – TEMPLE

Events & Breaches: Magecart Skimmer

Zeek - Demonstrate Your Skills

CVE-2022-29799/CVE-2022-29800 (Nimbuspwn) – Defensive

Foundational Static Analysis: Analyzing Structures