Episode 9: Headless Browser SSRF & RebindMultiA Tool Release + Web3 Bug
Critical Thinking - Bug Bounty Podcast
00:00
How to Use a Fire Tip in a Headless Browser SSRF Exploitation
There's a different timeout he told me on loading the body of hgtp responses um, and so if you go ahead and you Respond with the headers, um, you know at 200 response and you give it a content length of one And then you don't respond with anything else It there's a different time value on how long it will wait for the body of that hGP response to be kicked back. He dropped this fire tip which I ended up using in a headless browser SSRF exploitationUm, not too long ago Which was an interesting way to get your payload off or something like that. Um, just dude this cold has held on for so freaking long man. Like it
Transcript
Play full episode
