(opens in new window)

OWASP Vulnerable Web Applications Directory

An OWASP production project

A comprehensive registry of known vulnerable web and mobile applications for legal security testing and training.

SSRF Vuln Lab

PHP lab vulnerable to Server-Side Request Forgery (SSRF). Six scenarios: file/URL fetch, remote host connection, file download, IP blacklist bypass (DNS spoofing), DNS rebinding bypass, HTML-to-PDF generator. Includes exploitation guides.

Collections offline
Technology PHP
Categories Free-form Single-player
Author incredibleindishell, Mohammed Farhan
Stars 776 stars
Last contribution Aug 21, 2023 2y +
Link Docker

Notes

Docker: docker build -t <name> . then docker run -p 9000:80 <name>; app at http://localhost:9000.

← Back to directory