Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: server-side-request-forgery

incredibleindishell/SSRF_Vulnerable_Lab

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

Language: PHP - Size: 45.9 MB - Last synced at: about 23 hours ago - Pushed at: over 1 year ago - Stars: 716 - Forks: 184

swisskyrepo/SSRFmap

Automatic SSRF fuzzer and exploitation tool

Language: Python - Size: 4.28 MB - Last synced at: 2 days ago - Pushed at: about 2 months ago - Stars: 3,168 - Forks: 538

cujanovic/SSRF-Testing

SSRF (Server Side Request Forgery) testing resources

Language: Python - Size: 6.95 MB - Last synced at: 24 days ago - Pushed at: 7 months ago - Stars: 2,395 - Forks: 481

paulveillard/cybersecurity-ssrf

An ongoing & curated collection of awesome web vulnerability - Server-side request forgery software practices and remediation, libraries and frameworks, best guidelines and technical resources about SSRF

Language: Python - Size: 1.14 MB - Last synced at: 16 days ago - Pushed at: about 3 years ago - Stars: 17 - Forks: 2

entr0pie/CVE-2023-27163

Proof-of-Concept for Server Side Request Forgery (SSRF) in request-baskets (<= v.1.2.1)

Language: Shell - Size: 194 KB - Last synced at: 21 days ago - Pushed at: over 1 year ago - Stars: 29 - Forks: 5

y-mehta/ssrf-req-filter

Module to prevent SSRF when sending requests in NodeJS. Blocks request to local and private IP addresses

Language: JavaScript - Size: 876 KB - Last synced at: 9 days ago - Pushed at: 2 months ago - Stars: 22 - Forks: 1

arkadiyt/ssrf_filter

A ruby gem for defending against Server Side Request Forgery (SSRF) attacks

Language: Ruby - Size: 78.1 KB - Last synced at: 4 days ago - Pushed at: 3 months ago - Stars: 87 - Forks: 31

j0k3r/httplug-ssrf-plugin

Server-Side Request Forgery (SSRF) protection plugin for HTTPlug

Language: PHP - Size: 107 KB - Last synced at: 9 days ago - Pushed at: 4 months ago - Stars: 4 - Forks: 5

SeanPesce/CVE-2024-22243

Example exploitable scenarios for CVE-2024-22243 affecting the Spring framework (open redirect & SSRF).

Language: Java - Size: 40 KB - Last synced at: 7 days ago - Pushed at: 6 months ago - Stars: 9 - Forks: 2

fuzzlove/GopherSSRF

Gopher HTTP requests (POST/GET)

Language: Python - Size: 19.5 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0

Azad-02/Common-Vulnerabilities-and-Exploitations

The repository includes various vulnerbilities, their types, identification, exploitation and mitigations along with payloads. Includes: Cross-Site Scripting (XSS) SQL Injection (SQLi) Directory Traversal Command Injection

Size: 70.3 KB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0

mbadanoiu/CVE-2019-9849

CVE-2019-9849: Remote bullet graphics retrieved in “stealth mode” in LibreOffice

Size: 3.5 MB - Last synced at: about 2 months ago - Pushed at: 10 months ago - Stars: 0 - Forks: 0

sergiovks/CVE-2021-40438-Apache-2.4.48-SSRF-exploit

CVE-2021-40438 Apache <= 2.4.48 SSRF exploit

Language: Python - Size: 13.7 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

ChrisM-X/Spring-Boot-Security-Part-3

Spring boot application developed to learn how to use the framework and understand how vulnerabilities are manifested in the application and how to prevent them.

Language: Java - Size: 520 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

henryoswald/ssrfproxy-node

node package to use ssrfproxy.com for protection against server side request forgery

Language: TypeScript - Size: 15.6 KB - Last synced at: 25 days ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 0

medbsq/ssrf

this a ssrf scripts

Language: Python - Size: 27.3 KB - Last synced at: about 2 years ago - Pushed at: almost 3 years ago - Stars: 3 - Forks: 4

Related Keywords
server-side-request-forgery 16 ssrf 13 python3 3 security 3 vulnerability 3 web 2 http 2 exploit 2 cybersecurity 2 pentesting 2 pentest 2 hacking 2 ctf 2 exploitation 2 attack 2 bypass 1 0-day 1 sql-injection 1 directory-traversal 1 cross-site-scripting 1 cross-site-request-forgery 1 command-injection 1 webhacking 1 penetration-testing 1 owasp-top-10 1 offensive-security 1 bugbounty 1 url 1 uri 1 spring 1 open-redirect 1 out-of-band 1 oob-attack 1 scanner 1 fuzzing 1 bug-bounty-hunting 1 scripts 1 white-box-testing 1 secure-coding 1 mass-assignment 1 crosssitescripting 1 code-review 1 script 1 web-scanner 1 python 1 apache 1 cves 1 cve-2019-9849 1 cve 1 request-baskets 1 poc 1 golang 1 go 1 vulnerability-management 1 vulnerability-detection 1 vulnerability-assessment 1 vulnerabilities 1 server-side 1 security-tools 1 remediation 1 mitigation 1 pentest-tool 1 ssrfmap 1 hacktoberfest 1 web-security 1 lab 1 java 1 cve-2024-22243 1 plugin 1 php 1 httplug 1 ruby 1 gem 1 ssrf-req-filter 1 requests 1 request 1 preventive-measures 1 nodejs 1 node-module 1 node-js 1 filter 1 block 1 axios 1