PwnKata
Start drilling free
Home Web Exploitation SSRF via URL Parameter
medium Live now Web

SSRF via URL Parameter

Make the server fetch what it shouldn't. Internal targets are simulated safely inside the drill.

An endpoint fetches a user-supplied URL. Pivot it to reach an internal service and retrieve the flag — all simulated inside the isolated box, never a real external system.

What you'll practice

ssrfserver-side request forgeryweb exploitation
drill workspace · session live
medium

SSRF via URL Parameter

Make the server fetch what it shouldn't. Internal targets are simulated safely inside the drill.

Objective

Recover the flag at /root/flag.txt and submit it.

Drill this now

Spin up a live isolated target and start practicing in seconds — free.

Start drilling

Related web exploitation techniques

Web Live

SQL Injection: Auth Bypass

Drill authentication-bypass SQL injection by matching the payload to the query context.

easy
Web Live

OS Command Injection

Find where user input reaches a shell, then pick a payload form that survives the filter and response style.

medium
Web Live

Web Content Discovery

Web Content Discovery distilled into repeatable single-technique reps on isolated targets.

easy