Skip to content
#

server-side-request-forgery

Here are 27 public repositories matching this topic...

CyberInject

A comprehensive browser extension designed for authorized security testing and penetration testing activities. CyberInject provides quick access to common security payloads across multiple vulnerability categories.

  • Updated Jun 21, 2026
  • HTML

An ongoing & curated collection of awesome web vulnerability - Server-side request forgery software practices and remediation, libraries and frameworks, best guidelines and technical resources about SSRF

  • Updated Feb 22, 2022
  • Python

Header-based SSRF (scanner-for-debugging) fuzzing utility inspired by a HackerOne Blind SSRF report. Automates injection of Forwarded-type headers, detects time-delay behavior and 429 responses, supports authenticated flows, logs results, and optionally integrates Telegram notifications for controlled security testing.

  • Updated Feb 21, 2026
  • Python

This is a difficult web exploitation task. To solve it, I must exploit a Server-Side Request Forgery (SSRF) vulnerability in Git webhooks and use template injection. This allowed me to gain admin privileges via localhost, create a custom Git packfile to add myself as a collaborator to the hidden repository, and then clone it to read the flag.

  • Updated Oct 19, 2025

Improve this page

Add a description, image, and links to the server-side-request-forgery topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the server-side-request-forgery topic, visit your repo's landing page and select "manage topics."

Learn more