@systemdumb : Recently found an SSRF domain white list bypass. The app was looking for vulnerable[.]com in the request. I made a CNAME on my domain pointing to localhost, allowing for internal service access. vulnerable[.]com.mydomain[.]com --> 127.50.0.1 #bugbountytip #bugbounty • TwiCopy

Sysdum

@systemdumb

+ Follow

Synack Red Team | Coder | Bug Bounty Hunter Interested in desktops, tabletops, all kinds of tops really.

ID: 1218312725350244357

calendar_today17-01-2020 23:23:18

239 Tweet

573 Takipçi

563 Takip Edilen

Sysdum

@systemdumb

2 years ago

Recently found an SSRF domain white list bypass. The app was looking for vulnerable[.]com in the request. I made a CNAME on my domain pointing to localhost, allowing for internal service access. vulnerable[.]com.mydomain[.]com --> 127.0.0.1 #bugbountytip #bugbounty

thumb_up_off_alt4

chat_bubble_outline0

repeat1

shareShare