Introduction to SSRF Server-side request forgery (SSRF) is a web application vulnerability in which the attacker tricks the server-side application into making unauthorized requests to internal and external resources. In other words, by using an SSRF attack, an attacker can make requests to other resources on behalf of the vulnerable server. Through SSRF, an attacker
What is CSP? Content Security Policy(CSP) is a set of rules that we can set to decide whether to restrict resources such as images, scripts, styles, and frames from being loaded and executed by a website, thus preventing various attacks. We do not write the entire code for something we want to build. We fetch
Introduction to LFI Local File Inclusion (LFI) is a web application vulnerability in which we have some parameter and the parameter has a value from which the data is read. For example, http://target.site/index.php?location=IT reads the location of the user, now if proper validation is not applied the attacker can insert his malicious payload and can
Introduction to Local File Inclusion (LFI) Local File Inclusion usually referred to as LFI is not so common vulnerability that comes under web applications in which an attacker tricks the web application and tries loading local files of the application itself or the important local server files on which its hosted. LFI is a critical
