Home

Awesome

🔥 ssrf-king 🔥

License: MIT

v1.12 Latest

SSRF plugin for burp that Automates SSRF Detection in all of the Request

alt text

If you are facing any problems or would like a new feature that is not listed below Please create a new issue below in this form

Create New Issue

Upcoming Features Checklist

How to Install/Build

Features

It also performs the following tests based on this research:

Reference:

https://portswigger.net/research/cracking-the-lens-targeting-https-hidden-attack-surface

GET http://burpcollab/some/endpoint HTTP/1.1
Host: example.com
...

and

GET @burpcollab/some/endpoint HTTP/1.1
Host: example.com
...

and

GET /some/endpoint HTTP/1.1
Host: example.com:80@burpcollab
...

and

GET /some/endpoint HTTP/1.1
Host: burpcollab
...

and

GET /some/endpoint HTTP/1.1
Host: example.com
X-Forwarded-Host: burpcollab
...

Contributors

<a href="https://github.com/ethicalhackingplayground/ssrf-king/graphs/contributors"> <img src="https://contrib.rocks/image?repo=ethicalhackingplayground/ssrf-king" /> </a>

Scanning Options

Example

GitHub Logo

GitHub Logo

GitHub Logo

GitHub Logo

GitHub Logo

GitHub Logo

From here onwards you would fuzz the parameter to test for SSRF.

GitHub Logo

Video Demonstration

Watch the video

If you get a bounty please support by buying me a coffee

<br> <a href="https://www.buymeacoffee.com/krypt0mux" target="_blank"><img src="https://www.buymeacoffee.com/assets/img/custom_images/orange_img.png" alt="Buy Me A Coffee" style="height: 41px !important;width: 174px !important;box-shadow: 0px 3px 2px 0px rgba(190, 190, 190, 0.5) !important;-webkit-box-shadow: 0px 3px 2px 0px rgba(190, 190, 190, 0.5) !important;" ></a>