Back to directory
WRITEUP #104

Listen to the whispers: web timing attacks that actually work

SSRFTiming attackWAF bypassReverse proxy misconfiguration
by@albinowax(James Kettle)
Program
-
Published
Aug 7, 2024
Added to HackDex
Aug 14, 2024
Read Full Writeuphttps://portswigger.net/research/listen-to-the-whispers-web-timing-attacks-that-actually-work
RELATED WRITEUPS
Directory Traversal, SQL Injection and Server-Side Request Forgery
SQL InjectionPath traversal
IIS welcome page to source code review to LFI!
SSRFLFI
NTLM Credential Theft in Python Windows Applications
SSRFNTLMv2 hash disclosure
Vulnerabilities in Homepage Dashboard
RCESSRF
SSRFing the Web with the help of Copilot Studio
SSRF

Built with ❤️ by Shubham Rawat