Nodejs application intentionally vulnerable to SSRF
seth@ubuntu:/opt# sudo git clone https://github.com/sethsec/Nodejs-SSRF-App.git
seth@ubuntu:/opt# cd Nodejs-SSRF-App/
seth@ubuntu:/opt/Nodejs-SSRF-App# sudo ./install.sh
To start the server:
sudo nodejs ssrf-demo-app.js
sudo nodejs ssrf-demo-app.js -p 8080
seth@ubuntu:/opt/Nodejs-SSRF-App# sudo nodejs ssrf-demo-app.js
##################################################
#
# Server listening for connections on port:80
# Connect to server using the following url:
# -- http://[server]:80/?url=[SSRF URL]
#
##################################################
❯ git clone [email protected]:sethsec/Nodejs-SSRF-App.git
❯ cd Nodejs-SSRF-App/
❯ docker build -t "nodejs-ssrf-app" .
❯ docker run -it -p 8000:8000 nodejs-ssrf-app:latest
##################################################
#
# Server listening for connections on port:8000
# Connect to server using the following url:
# -- http://[server]:8000/?url=[SSRF URL]
#
##################################################