digMeMore
@digmemore
6.29K subscribers
244 photos
18 videos
24 files
514 links
Contact: @YShahinzadeh
Download Telegram
About
Blog
Apps
Platform
Join
digMeMore
6.29K subscribers
digMeMore
A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages!

#SSRF
#Book

@digmemore
1.3K viewsr00t98
digMeMore
Server Side Request Forgery (SSRF)

#SSRF
#Book

@digmemore
1.5K viewsr00t98, edited  
digMeMore
Wordpress xmlrpc.php -common vulnerabilites & how to exploit them

https://medium.com/@the.bilal.rizwan/wordpress-xmlrpc-php-common-vulnerabilites-how-to-exploit-them-d8d3c8600b32

#SSRF
#XMLRPC
#Wordpress

@digmemore
1.3K viewsr00t98
digMeMore
digMeMore
Wordpress xmlrpc.php -common vulnerabilites & how to exploit them https://medium.com/@the.bilal.rizwan/wordpress-xmlrpc-php-common-vulnerabilites-how-to-exploit-them-d8d3c8600b32 #SSRF #XMLRPC #Wordpress @digmemore
Small tool to automate SSRF wordpress and XMLRPC finder

https://github.com/t0gu/quickpress

#SSRF
#XMLRPC
#Wordpress

@digmemore
GitHub
GitHub - incogbyte/quickpress: Small tool to automate SSRF wordpress and XMLRPC finder
Small tool to automate SSRF wordpress and XMLRPC finder - incogbyte/quickpress
1.5K viewsr00t98
digMeMore
Finding SSRF via HTML Injection inside a PDF file on AWS EC2

https://blog.appsecco.com/finding-ssrf-via-html-injection-inside-a-pdf-file-on-aws-ec2-214cc5ec5d90

#SSRF
#HTMLi
#AWS

@digmemore
1.4K viewsr00t98, edited  
digMeMore
Escalating SSRF to RCE

https://link.medium.com/T9Ikabkla6

#SSRF
#RCE
#AWS

@digmemore
Medium
Escalating SSRF to RCE
Escalating SSRF to RCE in AWS Elastic Beanstalk
1.5K viewsr00t98
digMeMore
نحوه تجزیه و تحلیل URL ها توی زبان های برنامه نویسی مختلفه و ممکنه باعث به وجود اومدن باگ بشه.
حالا یکی دو نمونه از استفاده هایی که میشه باهاش کرد دور زدن مکانیزم های دفاعی برای SSRF و Open Redirect هست، که قبلا یه مقاله در موردش گذاشتیم.
رایتاپ زیر هم درک خوبی از این موارد بتون میده.

https://medium.com/entersoftsecurity/a-secret-note-to-bug-hunters-about-url-structure-and-its-parsers-2982f70ff6d6

#SSRF
#Bypass

@digmemore
2.1K viewsr00t98, edited  
digMeMore
Exploiting an SSRF: Trials and Tribulations

https://medium.com/a-bugz-life/exploiting-an-ssrf-trials-and-tribulations-14c5d8dbd69a

#SSRF
#AWS
#Cloud
#Bypass

@digmemore
1.9K viewsr00t98, edited