ioc[.]one - OSINT Cyber Threat Intelligence Database

How To: Server-Side Request Forgery (SSRF)

Tags

attack-pattern:

Show in Graph

Common Information

Type	Value
UUID	87b0a9c8-55e9-4164-a8cb-6b2f30e56040
Fingerprint	f57abdd9fc639c85
Analysis status	DONE
Considered CTI value	0
Text language
Published	June 14, 2017, 6 p.m.
Added to db	Jan. 18, 2023, 11:20 p.m.
Last updated	Nov. 17, 2024, 6:50 p.m.
Headline	How To: Server-Side Request Forgery (SSRF)
Title	How To: Server-Side Request Forgery (SSRF)
Detected Hints/Tags/Attributes	64/1/33

Source URLs

	Redirection	Url
Details	Source	https://www.hackerone.com/blog-How-To-Server-Side-Request-Forgery-SSRF

URL Provider

Details	Provider	Source level domain
Details	hackerone.com	www.hackerone.com

Attributes

Details	Type	#Events	Value
Details	Domain	707	google.com
Details	Domain	55	schema.org
Details	Domain	1	web-server.com
Details	Domain	3	url.host
Details	Domain	1	subdomain.yourdomain.com
Details	File	4	server.rb
Details	File	2	googleg_standard_color_128dp.png
Details	IPv4	15	10.0.0.3
Details	IPv4	34	10.0.0.2
Details	IPv4	97	10.0.0.1
Details	IPv4	619	0.0.0.0
Details	IPv4	79	1.2.3.4
Details	IPv4	132	10.0.0.0
Details	IPv4	1441	127.0.0.1
Details	IPv4	81	172.16.0.0
Details	IPv4	124	192.168.0.0
Details	IPv4	88	169.254.169.254
Details	Url	1	http://localhost:4567/?url=https://google.com
Details	Url	39	https://google.com
Details	Url	1	http://localhost:4567/\?url\=https://google.com
Details	Url	1	http://schema.org/webpage
Details	Url	1	http://web-server.com:4567/\?url\=http://10.0.0.2
Details	Url	1	http://web-server.com:4567
Details	Url	1	http://web-server.com:4567/\?url\=http://1.2.3.4:8080
Details	Url	1	http://10.0.0.2/.
Details	Url	1	http://10.0.0.2
Details	Url	1	http://subdomain.yourdomain.com/.
Details	Url	3	http://127.0.0.1:22
Details	Url	1	http://127.0.0.1:23
Details	Url	3	http://10.0.0.1
Details	Url	2	http://10.0.0.1:8080
Details	Url	1	http://169.254.169.254/latest/meta-data/.
Details	Url	5	http://169.254.169.254/latest/user-data