🔒 Academy Room 8 · Hard

Server-Side Request Forgery (SSRF)

Learn SSRF the way it's actually exploited — hands-on, against a live target. Turn a harmless URL-preview feature into a doorway to internal services and cloud metadata in the FetchFlow lab.

⚡ Start the SSRF Lab How it works →
// Overview

What Is Server-Side Request Forgery?

Server-Side Request Forgery is a vulnerability that lets an attacker make a server issue HTTP requests to destinations of the attacker's choosing. The crucial detail is where the request comes from: because it originates on the server, it inherits the server's network position — reaching internal services, loopback-bound admin panels, and cloud metadata endpoints that are completely unreachable from the public internet.

SSRF hides inside convenient features. Anything that fetches a URL on your behalf — a link-preview generator, a webhook validator, a PDF renderer, an image proxy, an import-by-URL tool — is a candidate. If the destination isn't strictly validated, that helpful feature becomes a pivot into the network.

// Why It Matters

Real-World Impact

Internal Service Access

Reach what's behind the firewall

Admin panels and internal APIs that return 403 to the outside world are often wide open from the server itself. SSRF lets an attacker speak to them directly, bypassing the network boundary that was supposed to protect them.

Cloud Metadata

Target the metadata endpoint

On cloud platforms, a special link-local address at 169.254.169.254 serves instance metadata — and on some configurations, temporary credentials. SSRF that reaches it can escalate from a web bug to cloud account access.

// OWASP

Where SSRF Sits in the OWASP Top 10

SSRF is significant enough to hold its own dedicated slot — A10:2021 – Server-Side Request Forgery — in the current OWASP Top 10. It was promoted into the list in the 2021 revision because of how common and how damaging it has become in cloud-hosted applications. The impact classes below are what earn it a high-severity rating.

Impact What the attacker gains Severity
Internal service access Reach loopback-bound admin panels and APIs High
Cloud metadata Query the instance metadata endpoint High
Internal port scanning Map which internal ports are open by response diffing Medium
Credential theft Retrieve temporary IAM credentials on some platforms High
// The Workflow

How PhantomRed Fits Into an SSRF Assessment

The core lesson of Room 8 is that automation and human judgment are a pipeline, not a competition. An autonomous scan maps the attack surface in minutes — the exposed paths, the forbidden endpoints, the open ports. But SSRF is interaction-based: it only reveals itself when you craft a request and watch where the server actually goes. That's the gap a human closes.

In the lab, you run a real PhantomRed scan against FetchFlow, read the findings it surfaces, then take over manually to prove the SSRF the scanner can't see:

Room 9 takes this a step further with a dedicated XXE lab, where an XML parser can be turned into an SSRF primitive — the two vulnerability classes chain together directly.

// What You'll Learn

Learning Objectives

Concepts

  • Why a request's origin determines what it can reach
  • Where fetch-a-URL sinks hide in real applications
  • How SSRF maps onto the OWASP Top 10

Hands-On Skills

  • Reading a scan report to map a fetch-driven attack surface
  • Reaching internal-only endpoints through a preview feature
  • Querying a simulated cloud metadata service via SSRF
// FAQ

Frequently Asked Questions

What is SSRF (Server-Side Request Forgery)?
SSRF is a web vulnerability where an attacker induces a server to make HTTP requests to destinations the attacker chooses. Because the request originates from the server, it can reach internal-only services, cloud metadata endpoints, and other resources that are firewalled off from the public internet. It typically appears in features that fetch a user-supplied URL.
Is SSRF in the OWASP Top 10?
Yes. SSRF is its own dedicated category — A10:2021 — in the current OWASP Top 10. It was added in the 2021 revision in direct response to how frequently it appears in modern cloud-hosted applications and how severe its impact can be when it reaches internal infrastructure.
How is SSRF exploited?
An attacker supplies a URL to a server-side fetch feature — a link preview, webhook validator, image proxy, or import tool — pointing it at an internal address instead of an external one. The server fetches it and often returns the response, exposing internal services. In the FetchFlow lab you practice this against a live URL-preview microservice.
What can an attacker reach with SSRF?
Common targets include internal admin panels, cloud metadata services at 169.254.169.254 (which can leak temporary IAM credentials on some platforms), internal APIs and databases, and other loopback-bound services. SSRF turns a single fetch feature into a foothold on the internal network.
Can an automated scanner detect SSRF?
Scanners map the reachable attack surface — open ports, forbidden paths, exposed endpoints — but SSRF is interaction-based and frequently invisible to passive scanning, because confirming it requires crafting a request and observing where the server goes. PhantomRed maps the surface automatically; the human proves the SSRF. That division of labor is the core lesson of the room.
How do you prevent SSRF?
Validate and allowlist outbound destinations rather than blocklisting, reject requests to private and loopback IP ranges and to link-local metadata addresses, disable unused URL schemes, and avoid following redirects into internal space. Network-level egress controls provide defense in depth when application checks are bypassed.
// Related

Related Rooms & Guides

// Get Started

Practice SSRF Against a Live Target

The FetchFlow lab is live and free to play. Run a real autonomous scan, then exploit the SSRF the scanner can't see — reach the internal admin panel and the cloud metadata endpoint, end to end.

⚡ Open the SSRF Lab Start a Free Scan →