webPromedium
Lab 196 — ZoneDesk — SSRF via Health Monitor URL Check
hackadvisor
Task: DNS management platform (ZoneDesk) with health monitor URL check feature. Solution: SSRF via health check endpoint to reach internal DNS Administration API on localhost:3001, enumerate admin endpoints, and extract flag from DNS zone TXT record export.
$ ls tags/ techniques/
internal_service_discoveryssrf_via_url_parameterdns_zone_exfiltrationcommented_code_recon
🔒
Permission denied (requires tier.pro)
Sign in to access full writeups
Sign in with GitHub to continue. No email required.
$sign in$ grep --similar
Similar writeups
- [web][Pro]Lab 256 — UptimeRadar — SSRF via URL Health Check— hackadvisor
- [web][Pro]Lab 91 — PingRadar — SSRF Filter Bypass via Open Redirect Chain— hackadvisor
- [web][Pro]Lab 205 — DockForge — SSRF in Webhook Test Endpoint— hackadvisor
- [web][Pro]Lab 89 — PingRadar — SSRF via DNS Rebinding (TOCTOU)— hackadvisor
- [web][Pro]Lab 97 — UptimePulse — SSRF Chain to RCE via Cloud Metadata— hackadvisor