Lorsrf – Tool to Bruteforce SSRF Parameter

Lorsrf - Tool to Bruteforce SSRF Parameter

lorsrf

Bruteforcing on Hidden parameters to find SSRF vulnerability using GET and POST Methods

NOTE

Installation

git clone https://github.com/knassar702/lorsrf
cd lorsrf
sudo pip3 install requests flask

Install NGROK

Steps :

Ngrok

  • run your ngrok ./ngrok http 9090
  • run server.py script and add ngrok port python3 server.py 9090
  • run lorsrf.py and add ngrok host using -s option

requestbin.com

How can i use it .?

cat YOUR_LIST.txt | python3 lorsrf.py -t URL_TARGET -s YOUR_HOST -w wordlist.txt

Click here to more usage demo


You May Also Like

Leave a Reply

Your email address will not be published. Required fields are marked *

four × one =