Welcome to Cycubix Docs

Welcome to Cycubix Docs
Our Cybersecurity Training Courses
Application Security Series
- Web Application Security Essentials
ISC2 Courses
AWS Courses
- AWS Certified Security – Specialty (SCS-C02)
Crowdstrike
- Troubleshooting Mac Devices
  - Mac sensors on macOS Ventura may fail to remove Falcon.app when uninstalling
  - System Extensions not activated
Jamf
- Jamf Protect

Powered by GitBook

On this page

Was this helpful?

Application Security Series

Web Application Security Essentials

WebGoat Labs | Web Application Security Essentials | Cycubix Docs

A10: 2021 | Server Side Request Forgery | Cycubix Docs

A10:2021 | Client Side Request Forgery | Cycubix Docs

A10:2021 | Server Side Request Forgery (3) | Cycubix Docs

PreviousA10:2021 | Server Side Request Forgery (2) | Cycubix Docs NextA10:2021 | Server Side Request Forgery (4) | Cycubix Docs

Last updated 10 months ago

Was this helpful?

Change the request, so the server gets information from

Click the button and figure out what happened.

Solution

Like in the previous exercise, intercept with ZAP the request.

As it is requested by the exercise, we need to change the URL parameters into "".

http://ifconfig.pro

http://ifconfig.pro