ssrf-server-side-request-forgery
CommunityConfirm and exploit SSRF to reach internal systems.
Education & Research#ssrf#cloud metadata#gopher#internal services#dns rebinding#url parser bypass#blind ssrf
AuthorDorianGallo
Version1.0.0
Installs0
System Documentation
What problem does it solve?
SSRF lets an attacker make a vulnerable server fetch attacker-controlled or internal resources, potentially reaching cloud metadata, localhost services, or secondary protocols for credential theft and escalation.
Core Features & Use Cases
- SSRF discovery and confirmation: Identify SSRF surfaces via URL/IP-bearing parameters and validate blind SSRF with OOB callbacks and timing/error analysis.
- Filter bypass techniques: Try localhost and metadata variants (IPv4/IPv6, decimal/hex/octal forms, DNS rebinding) and protocol/scheme abuse such as gopher, dict, and file.
- High-impact targets: Systematically test cloud instance metadata endpoints (AWS/GCP/Azure/Kubernetes/etc.) and common internal services (Docker API, Redis/Elasticsearch, admin panels).
- Real-world chaining playbooks: Use companion scenario material for CVE-style chains, including DNS rebinding and SSRF-to-RCE patterns.
Quick Start
Use ssrf-server-side-request-forgery to test whether the vulnerable input triggers server-side fetching by requesting a collaborator URL.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: ssrf-server-side-request-forgery Download link: https://github.com/DorianGallo/hack-skills-local/archive/main.zip#ssrf-server-side-request-forgery Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.