From a lame SSRF to a full $4000 RCE

Update: 2020-07-05

Description

Hello ethical hackers and bug bounty hunters! Welcome to this bug bounty write-up where I show you how I found a Server-Side Request Forgery vulnerability (SSRF). Then, I will explain how I was able to escalate it to obtain a Remote Code Execution (RCE). Finally, you will see how it is possible to gain a full SSH shell on the vulnerable server.

If all this seems intimidating for you, let me tell you that shouldn’t be; just make sure you stick with me until the end. I promise you are going to learn many things today!

Read more on https://thehackerish.com/bug-bounty-write-up-from-ssrf-to-4000/

Download your FREE Web hacking LAB: https://thehackerish.com/owasp-top-10-lab-vm-free

Facebook Page: https://www.facebook.com/thehackerish

Comments

In Channel

Certified Red Team Operator Review

2021-12-2911:14

JavaScript Enumeration for bug bounty hunters

2020-12-2410:55

OSCP Certification: All you need to know

2020-07-3014:13

From a lame SSRF to a full $4000 RCE

2020-07-0509:49

Hacking a new web application from start to finish

2020-06-0415:34

Bug bounty tools you should start using!

2020-05-2713:13

This is how you write bug bounty reports that stand out!

2020-05-0715:23

My bug bounty methodology and how I approach a target for the first time

2020-04-3018:16

Bug bounties: Burnout and your mental health

2020-04-1214:31

Bug bounty hunting bird' eye view and realistic expectations

2020-04-0517:12

The podcast in a nutshell

2020-04-0200:58

00:00

From a lame SSRF to a full $4000 RCE

#box-pro-ellipsis-176007425842026{-webkit-line-clamp:2;}From a lame SSRF to a full $4000 RCE

From a lame SSRF to a full $4000 RCE

thehackerish

From a lame SSRF to a full $4000 RCE