Testing for Server-Side Request Forgery
OWASP
OWASP Web Security Testing Guide 4.2 > 7. Data Validation Testing > 7.19. Testing for Server-Side Request Forgery | ID | Link to Hackinglife | Link to OWASP | Description | | :--- | :------------------------------ | :------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | :----------------------------------------------------------------------------------------------------------------------------- | | 7.19 | WSTG-INPV-19 | Testing for Server-Side Request Forgery | - Identify SSRF injection points. - Test if the injection points are exploitable. - Asses the severity of the vulnerability. |
See my notes
- Server Side Request Forgery SSRF: What is it. Payloads. Techniques. Dictionaries. Tools.