Introduction to SSRF Server-side request forgery (SSRF) is a web application vulnerability in which the attacker tricks the server-side application into making unauthorized requests to internal and external resources. In other words, by using an SSRF attack, an attacker can make requests to other resources on behalf of the vulnerable server. Through SSRF, an attacker
What is CSP? Content Security Policy(CSP) is a set of rules that we can set to decide whether to restrict resources such as images, scripts, styles, and frames from being loaded and executed by a website, thus preventing various attacks. We do not write the entire code for something we want to build. We fetch
Introduction to LFI Local File Inclusion (LFI) is a web application vulnerability in which we have some parameter and the parameter has a value from which the data is read. For example, http://target.site/index.php?location=IT reads the location of the user, now if proper validation is not applied the attacker can insert his malicious payload and can
Introduction Ghidra is a powerful software reverse engineering tool, initially developed by the National Security Agency (NSA) and subsequently released as open source. It provides a suite of capabilities for analyzing compiled code, Ghidra proves indispensable for security researchers, software developers, and professionals exploring the inner workings of binary executables. Particularly valuable in the realm
