YoVDO

Server Side Request Forgery

Offered By: Bugcrowd via YouTube

Tags

Server-Side Request Forgery (SSRF) Courses Web Development Courses Cybersecurity Courses Server Management Courses

Course Description

Overview

Learn about Server Side Request Forgery (SSRF) attacks in this 37-minute video from Bugcrowd University. Explore the OWASP definition, understand external and internal SSRF techniques, discover methods for bypassing blacklists, and examine real-world examples. Gain practical insights through a simple demo and access valuable resources for further study on this critical web security vulnerability.

Syllabus

Intro
Module Trainer
Module Outline
Introduction to SSRE
External SSRE - MAKING OUTBOUND CONNECTIONS TO A SERVER YOU CONTROL
External SSRF - Making an outbound connection
External SSRE- Making an external pingback
Internal SSRE - Parsing an AWS Metadata
Bypassing the Blacklists
Lab URL (simple demo)
Public Disclosure Sample
Resources and References


Taught by

Bugcrowd

Related Courses

OWASP Top 10 - A10:2021 - Server-Side Request Forgery (SSRF)
Cybrary Popular Web Attacks - XSS, CSRF, SSRF, SQL Injection, MIME Sniffing, Smuggling and More
Hussein Nasser via YouTube API-Induced SSRF - How Apple Pay Scattered Vulnerabilities Across the Web
Black Hat via YouTube A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages
Black Hat via YouTube SSRF PWNs - New Techniques and Stories
Hack In The Box Security Conference via YouTube