Skip to content
This repository was archived by the owner on Dec 24, 2022. It is now read-only.

ishara111/ISEC3004-Exploits-and-Patches

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
__pycache__
__pycache__
 
 
templates
templates
 
 
README.md
README.md
 
 
app.py
app.py
 
 
english.txt
english.txt
 
 
sinhala.txt
sinhala.txt
 
 
tamil.txt
tamil.txt
 
 

Repository files navigation

ISEC3004 SSRF vuln app: Exploit

Setting Up And Running

python3 required

  pip3 install flask
  
  flask run -p 80

How To Exploit

  1. Open browser and go to http://localhost/ then select langauge and submit it

  2. Open burp suite and using its proxy catch the post request sent then change the filepath to /etc/passwd

  3. The password file will be returned instead of the language file

About

SSRF and Buffer Over Read Exploits and patches can be found in their respective branches

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages