n|u - The Open Security Community, profile picture
Uploaded byn|u - The Open Security Community
PDF, PPTX395 views

Talking About SSRF,CRLF

The document discusses CRLF injection and SSRF vulnerabilities. CRLF injection occurs when user input is directly parsed into response headers without sanitization, allowing special characters to be injected. SSRF is when a server is induced to make HTTP requests to domains of an attacker's choosing, potentially escalating access. Mitigations include sanitizing user input, implementing whitelists for allowed domains/protocols, and input validation.

Education
Related topics:
Information Security
In this document
Powered by AI

Introduction to penetration testing and web penetration testing concepts.

CRLF Injection is a web vulnerability caused by unsanitized user input, leading to injection attacks like XSS.

Key mitigation strategies include sanitizing user input and properly encoding output in HTTP headers.

SSRF allows attackers to induce server-side applications to make requests to arbitrary domains, exploiting trust.

Mitigation strategies for SSRF include using whitelists for validation and ensuring proper input validation.

Embed presentation

Download as PDF, PPTX
Talk on SSRF and CRLF Injection. By Mohit Vohra (Security Engineer at Tac Security)
Quick overview:- ● What is penetration testing? ● What is web penetration testing?
What is CRLF Injection? ● CRLF Injection Vulnerability is a web application vulnerability happens due to direct parsing of user entered data to the response header fields like set cookie without proper sanitation. ● CR and LF are special characters (%0a%0d). ● It is one of the injection attacks, it can be used to escalate more malicious attacks like xss.
Mitigations of CRLF:- ● Always follow the rule of never trust user input. ● Sanitize and neutralize all user-supplied data or properly encode output in HTTP headers that would otherwise be visible to users in order to prevent the injection of crlf.
What is SSRF? Server-side request forgery is a web security vulnerability that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of attacker’s choosing. SSRF attacks often exploit trust relationships to escalate an attack from the vulnerable application and perform unauthorized actions. These relationships might exist in relation to server itself, or in relation to other back-end systems within the same organization.
Let’s live demonstrate it..
Mitigations of SSRF:- ● A blacklist is not a good protection because with so many different protocols, schemes, encodings, bypasses will most certainly occur. Because of this, a whitelist is a better approach. ● Proper input validation of data can majorly help the client to protect the web application against unwanted controls or actions.
Talking About SSRF,CRLF

More Related Content

PPTX
Waf bypassing Techniques
byAvinash Thapa
 
PPTX
Deep dive into ssrf
byn|u - The Open Security Community
 
PPTX
Pentesting ReST API
byNutan Kumar Panda
 
PDF
XSS Magic tricks
byGarethHeyes
 
PDF
The Secret Life of a Bug Bounty Hunter – Frans Rosén @ Security Fest 2016
byFrans Rosén
 
PDF
Building Advanced XSS Vectors
byRodolfo Assis (Brute)
 
PDF
Cross site scripting
byn|u - The Open Security Community
 
PPTX
Bug Bounty for - Beginners
byHimanshu Kumar Das
 
Waf bypassing Techniques
byAvinash Thapa
 
Deep dive into ssrf
byn|u - The Open Security Community
 
Pentesting ReST API
byNutan Kumar Panda
 
XSS Magic tricks
byGarethHeyes
 
The Secret Life of a Bug Bounty Hunter – Frans Rosén @ Security Fest 2016
byFrans Rosén
 
Building Advanced XSS Vectors
byRodolfo Assis (Brute)
 
Cross site scripting
byn|u - The Open Security Community
 
Bug Bounty for - Beginners
byHimanshu Kumar Das
 

What's hot

PDF
REST APIs with Spring
byJoshua Long
 
PDF
OWASP Top 10 Web Application Vulnerabilities
bySoftware Guru
 
PPTX
SSRF For Bug Bounties
byOWASP Nagpur
 
PDF
Pentesting Rest API's by :- Gaurang Bhatnagar
byOWASP Delhi
 
PDF
CSRF Basics
byn|u - The Open Security Community
 
PDF
Rest api with Python
bySantosh Ghimire
 
PPTX
Spring Boot and REST API
by07.pallav
 
PDF
HTTP Parameter Pollution Vulnerabilities in Web Applications (Black Hat EU 2011)
byMarco Balduzzi
 
PPTX
API Security Fundamentals
byJosé Haro Peralta
 
PPTX
Secure Code Warrior - CRLF injection
bySecure Code Warrior
 
PDF
Api security-testing
byn|u - The Open Security Community
 
PDF
Bug Bounty Hunter Methodology - Nullcon 2016
bybugcrowd
 
PPTX
Directory Traversal & File Inclusion Attacks
byRaghav Bisht
 
PPTX
API
byMasters Academy
 
PPTX
File inclusion
byAaftabKhan14
 
PDF
Thick Client Penetration Testing.pdf
bySouvikRoy114738
 
PPTX
Cross Site Scripting ( XSS)
byAmit Tyagi
 
PPT
Cross Site Request Forgery Vulnerabilities
byMarco Morana
 
PDF
HTTP Request Smuggling via higher HTTP versions
byneexemil
 
PPTX
Bug Bounty 101
byShahee Mirza
 
REST APIs with Spring
byJoshua Long
 
OWASP Top 10 Web Application Vulnerabilities
bySoftware Guru
 
SSRF For Bug Bounties
byOWASP Nagpur
 
Pentesting Rest API's by :- Gaurang Bhatnagar
byOWASP Delhi
 
CSRF Basics
byn|u - The Open Security Community
 
Rest api with Python
bySantosh Ghimire
 
Spring Boot and REST API
by07.pallav
 
HTTP Parameter Pollution Vulnerabilities in Web Applications (Black Hat EU 2011)
byMarco Balduzzi
 
API Security Fundamentals
byJosé Haro Peralta
 
Secure Code Warrior - CRLF injection
bySecure Code Warrior
 
Api security-testing
byn|u - The Open Security Community
 
Bug Bounty Hunter Methodology - Nullcon 2016
bybugcrowd
 
Directory Traversal & File Inclusion Attacks
byRaghav Bisht
 
API
byMasters Academy
 
File inclusion
byAaftabKhan14
 
Thick Client Penetration Testing.pdf
bySouvikRoy114738
 
Cross Site Scripting ( XSS)
byAmit Tyagi
 
Cross Site Request Forgery Vulnerabilities
byMarco Morana
 
HTTP Request Smuggling via higher HTTP versions
byneexemil
 
Bug Bounty 101
byShahee Mirza
 

Similar to Talking About SSRF,CRLF

PPTX
Understanding Cross-site Request Forgery
byDaniel Miessler
 
PPTX
SSRF exploit the trust relationship
byn|u - The Open Security Community
 
PPTX
Ssrf
byIlan Mindel
 
PPTX
A8 cross site request forgery (csrf) it 6873 presentation
byAlbena Asenova-Belal
 
PDF
SSRF vs. Business-critical applications. XXE tunneling in SAP
byERPScan
 
PPTX
Security Issues in HTML 5
byWasif Altaf
 
PDF
Protecting Your Web Applications: How to Prevent Cross-Site Request Forgery (...
bySecuodsoft
 
PPTX
Chapter 8Chapter 8Chapter 8Chapter 8Chapter 8
byuser201002adobe
 
PPTX
Exploring Web Security Threats: A Practical Study on SQL Injection and CSRF
byBoston Institute of Analytics
 
PDF
Understanding CSRF
byPotato
 
PPTX
SOHIL_RM (1).pptx
bySanketPatel295815
 
PPTX
Cross Site Request Forgery- CSRF
byMitul Babariya
 
PDF
Csrf
bysamtpru
 
PDF
Prevention Against CSRF Attack using Client Server Mutual Authentication Tech...
byIRJET Journal
 
PPTX
Its all about CSRF - null Mumbai Meet 10 January 2015 Null/OWASP Chapter
byNilesh Sapariya
 
PDF
A4 A K S H A Y B H A R D W A J
bybhardwajakshay
 
PPTX
Cyber security 2.pptx
byNotSure11
 
PPTX
Client sidesec 2013 - non js
byTal Be'ery
 
PDF
Oh no, was that CSRF #Ouch
byAbhinav Sejpal
 
PDF
SSRF vs. Business-critical applications. Part 2. New vectors and connect-back...
byERPScan
 
Understanding Cross-site Request Forgery
byDaniel Miessler
 
SSRF exploit the trust relationship
byn|u - The Open Security Community
 
Ssrf
byIlan Mindel
 
A8 cross site request forgery (csrf) it 6873 presentation
byAlbena Asenova-Belal
 
SSRF vs. Business-critical applications. XXE tunneling in SAP
byERPScan
 
Security Issues in HTML 5
byWasif Altaf
 
Protecting Your Web Applications: How to Prevent Cross-Site Request Forgery (...
bySecuodsoft
 
Chapter 8Chapter 8Chapter 8Chapter 8Chapter 8
byuser201002adobe
 
Exploring Web Security Threats: A Practical Study on SQL Injection and CSRF
byBoston Institute of Analytics
 
Understanding CSRF
byPotato
 
SOHIL_RM (1).pptx
bySanketPatel295815
 
Cross Site Request Forgery- CSRF
byMitul Babariya
 
Csrf
bysamtpru
 
Prevention Against CSRF Attack using Client Server Mutual Authentication Tech...
byIRJET Journal
 
Its all about CSRF - null Mumbai Meet 10 January 2015 Null/OWASP Chapter
byNilesh Sapariya
 
A4 A K S H A Y B H A R D W A J
bybhardwajakshay
 
Cyber security 2.pptx
byNotSure11
 
Client sidesec 2013 - non js
byTal Be'ery
 
Oh no, was that CSRF #Ouch
byAbhinav Sejpal
 
SSRF vs. Business-critical applications. Part 2. New vectors and connect-back...
byERPScan
 

More from n|u - The Open Security Community

PPTX
Introduction to shodan
byn|u - The Open Security Community
 
PDF
Android Pentesting
byn|u - The Open Security Community
 
PDF
Cloud security
byn|u - The Open Security Community
 
PDF
XXE
byn|u - The Open Security Community
 
PDF
DevSecOps Jenkins Pipeline -Security
byn|u - The Open Security Community
 
PPTX
Frida - Objection Tool Usage
byn|u - The Open Security Community
 
PPTX
Nmap basics
byn|u - The Open Security Community
 
PDF
Osint primer
byn|u - The Open Security Community
 
PPTX
Linux for hackers
byn|u - The Open Security Community
 
PDF
Extensible markup language attacks
byn|u - The Open Security Community
 
PPTX
Building active directory lab for red teaming
byn|u - The Open Security Community
 
PDF
OSQuery - Monitoring System Process
byn|u - The Open Security Community
 
PDF
Metasploit primary
byn|u - The Open Security Community
 
PDF
Introduction to TLS 1.3
byn|u - The Open Security Community
 
PDF
News Bytes
byn|u - The Open Security Community
 
PDF
Gibson 101 -quick_introduction_to_hacking_mainframes_in_2020_null_infosec_gir...
byn|u - The Open Security Community
 
PDF
Detecting persistence in windows
byn|u - The Open Security Community
 
PDF
News bytes null 200314121904
byn|u - The Open Security Community
 
PDF
Hardware security testing 101 (Null - Delhi Chapter)
byn|u - The Open Security Community
 
PPTX
Owning a company through their logs
byn|u - The Open Security Community
 
Introduction to shodan
byn|u - The Open Security Community
 
Android Pentesting
byn|u - The Open Security Community
 
Cloud security
byn|u - The Open Security Community
 
XXE
byn|u - The Open Security Community
 
DevSecOps Jenkins Pipeline -Security
byn|u - The Open Security Community
 
Frida - Objection Tool Usage
byn|u - The Open Security Community
 
Nmap basics
byn|u - The Open Security Community
 
Osint primer
byn|u - The Open Security Community
 
Linux for hackers
byn|u - The Open Security Community
 
Extensible markup language attacks
byn|u - The Open Security Community
 
Building active directory lab for red teaming
byn|u - The Open Security Community
 
OSQuery - Monitoring System Process
byn|u - The Open Security Community
 
Metasploit primary
byn|u - The Open Security Community
 
Introduction to TLS 1.3
byn|u - The Open Security Community
 
News Bytes
byn|u - The Open Security Community
 
Gibson 101 -quick_introduction_to_hacking_mainframes_in_2020_null_infosec_gir...
byn|u - The Open Security Community
 
Detecting persistence in windows
byn|u - The Open Security Community
 
News bytes null 200314121904
byn|u - The Open Security Community
 
Hardware security testing 101 (Null - Delhi Chapter)
byn|u - The Open Security Community
 
Owning a company through their logs
byn|u - The Open Security Community
 

Recently uploaded

PDF
Biology Practical Class 12th 2025 PDF(2)-2-52.pdf
bySCPRPWomenCollegeChi
 
PPTX
Accounting Skills Paper-II (Registers of PACs and Credit Co-operative Societies)
byDr. Sushil Bansode
 
PPTX
META-ANALYSIS INTERPRETATION, PUBLICATION BIAS AND GRADE ASSESSMENT.pptx
bySystematic Reviews Network (SRN)
 
PPTX
Pig- piggy bank in Big Data Analytics.ppt.pptx
byVarshini M
 
PPTX
Details of Epithelial and Connective Tissue.pptx
byAshish Umale
 
PPTX
The Cell & Cell Cycle-detailed structure and function of organelles.pptx
byAshish Umale
 
PPTX
How to Manage Package Reservation in Odoo 18 Inventory
byCeline George
 
PPTX
UNIT 1: COMMUNICATION SKILLS, BARRIERS TO COMMUNICATION, PERSPECTIVES IN COMM...
byPOOJA KARVANDE
 
PPTX
Access partner report in Odoo 18.2 _ Odoo 19
byCeline George
 
PPTX
PURPOSIVE SAMPLING IN EDUCATIONAL RESEARCH RACHITHRA RK.pptx
byssuser047b711
 
PPTX
Overview of how to Create a Model in Odoo 18
byCeline George
 
PPTX
Multiple Linear Regression - Least Square Method X₁ on X₂ and X₃
bySundar B N
 
PDF
M.Sc. Nonchordates Complete Syllabus PPT | All Important Topics Covered
byKNIPSS SULTANPUR
 
PPTX
Planning Assessment for Outcome-based Education
byAdri Jovin
 
PPTX
Steve Hale - Developing Elite Young Goalkeepers 2024.pptx
bypjmfd
 
PDF
Types of eggs and Egg membranes (Developmental Zoology)
bySudhandraKarthi
 
PPTX
REVISED DEFENSE MECHANISM / ADJUSTMENT MECHANISM-FINAL
byShimla
 
PDF
Using Charts and Tables in Presenting Data
byThelma Villaflores
 
PPTX
Growth & Development MILESTONES (ADOLESCENTS ).pptx
byAneetaSharma15
 
PPTX
Partial Correlation of Coefficient - Values of r₁₂.₃, r₂₃.₁ & r₁₃.₂
bySundar B N
 
Biology Practical Class 12th 2025 PDF(2)-2-52.pdf
bySCPRPWomenCollegeChi
 
Accounting Skills Paper-II (Registers of PACs and Credit Co-operative Societies)
byDr. Sushil Bansode
 
META-ANALYSIS INTERPRETATION, PUBLICATION BIAS AND GRADE ASSESSMENT.pptx
bySystematic Reviews Network (SRN)
 
Pig- piggy bank in Big Data Analytics.ppt.pptx
byVarshini M
 
Details of Epithelial and Connective Tissue.pptx
byAshish Umale
 
The Cell & Cell Cycle-detailed structure and function of organelles.pptx
byAshish Umale
 
How to Manage Package Reservation in Odoo 18 Inventory
byCeline George
 
UNIT 1: COMMUNICATION SKILLS, BARRIERS TO COMMUNICATION, PERSPECTIVES IN COMM...
byPOOJA KARVANDE
 
Access partner report in Odoo 18.2 _ Odoo 19
byCeline George
 
PURPOSIVE SAMPLING IN EDUCATIONAL RESEARCH RACHITHRA RK.pptx
byssuser047b711
 
Overview of how to Create a Model in Odoo 18
byCeline George
 
Multiple Linear Regression - Least Square Method X₁ on X₂ and X₃
bySundar B N
 
M.Sc. Nonchordates Complete Syllabus PPT | All Important Topics Covered
byKNIPSS SULTANPUR
 
Planning Assessment for Outcome-based Education
byAdri Jovin
 
Steve Hale - Developing Elite Young Goalkeepers 2024.pptx
bypjmfd
 
Types of eggs and Egg membranes (Developmental Zoology)
bySudhandraKarthi
 
REVISED DEFENSE MECHANISM / ADJUSTMENT MECHANISM-FINAL
byShimla
 
Using Charts and Tables in Presenting Data
byThelma Villaflores
 
Growth & Development MILESTONES (ADOLESCENTS ).pptx
byAneetaSharma15
 
Partial Correlation of Coefficient - Values of r₁₂.₃, r₂₃.₁ & r₁₃.₂
bySundar B N
 

Talking About SSRF,CRLF

  • 1.
    Talk on SSRFand CRLF Injection. By Mohit Vohra (Security Engineer at Tac Security)
  • 2.
    Quick overview:- ● Whatis penetration testing? ● What is web penetration testing?
  • 3.
    What is CRLFInjection? ● CRLF Injection Vulnerability is a web application vulnerability happens due to direct parsing of user entered data to the response header fields like set cookie without proper sanitation. ● CR and LF are special characters (%0a%0d). ● It is one of the injection attacks, it can be used to escalate more malicious attacks like xss.
  • 6.
    Mitigations of CRLF:- ●Always follow the rule of never trust user input. ● Sanitize and neutralize all user-supplied data or properly encode output in HTTP headers that would otherwise be visible to users in order to prevent the injection of crlf.
  • 7.
    What is SSRF? Server-siderequest forgery is a web security vulnerability that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of attacker’s choosing. SSRF attacks often exploit trust relationships to escalate an attack from the vulnerable application and perform unauthorized actions. These relationships might exist in relation to server itself, or in relation to other back-end systems within the same organization.
  • 8.
  • 9.
    Mitigations of SSRF:- ●A blacklist is not a good protection because with so many different protocols, schemes, encodings, bypasses will most certainly occur. Because of this, a whitelist is a better approach. ● Proper input validation of data can majorly help the client to protect the web application against unwanted controls or actions.