Chris Sullo

2 posts

a year ago by Chris Sullo — 5 min read

Abusing Reverse Proxies, Part 2: Internal Access

Introduction As seen in Part 1: Abusing Reverse Proxies: Metadata [https://blog.projectdiscovery.io/abusing-reverse-proxies-metadata/], open proxies can allow an attacker to access cloud metadata API services. However, even without metadata services available, open proxies can be a boon for an attacker....

Abusing Reverse Proxies, Part 1: Metadata

Chris Sullo — 4 min read

Introduction Many cloud service providers offer a "metadata" service on their virtual machines. These services offer sensitive details about the instance and...

nuclei research proxy

Your link has expired

Success! Check your email for magic link to sign-in.

Chris Sullo

Abusing Reverse Proxies, Part 2: Internal Access

Abusing Reverse Proxies, Part 1: Metadata

Subscribe to new posts.