This lab on Server-Side Request Forgery (SSRF) assesses the learner’s understanding of how an existing SSRF vulnerability in a cloud application can be discovered and exploited.
Learning Objectives
On successful completion of this course, learners should have the knowledge and skills required to:
- Understand how adversaries can exploit such vulnerabilities and access resources not directly reachable by end users
- Leverage trust relationships among back-end systems protected by network topology but lacking more sophisticated access controls