SDT 307 – Testing for Server-Side Request Forgery (SSRF)

Course Overview


This course explains how software developers and testers can determine if their web applications are vulnerable to A10:2021 Server-Side Request Forgery (SSRF), as defined by the Open Web Application Security Project (OWASP).

After completing this course, you will have the knowledge and skills required to:

  • Recognized user input potentially exploitable for executing SSRF attacks
  • Exploit SSRF vulnerabilities, mapping normally unreachable networks
  • Understand how to bypass detection and validation code
  • Gain access to cloud metadata

Course Details

Course Number: SDT 307
Course Duration: 10 minutes
Course CPE Credits: 0.25

NICE Specialty Areas

Available Languages

  • English