Ep. 10 - Injection Fundamentals: What Is SSRF?

What is SSRF? Lets answer that question by injecting a live environment!

   Watch Promo

About This Episode

At the end of this episode, you'll be able to:

1. See how Server Side Request Forgery (SSRF) works through a live example

2. Understand how your code (coupled with the deployment environment) can create Semantic Injection risks

3. Review Blind Injection through a real vulnerability within New Relic

4. Through Blind Injection, we learn why we focus on input validation (as opposed to output validation)

5. Start reviewing mitigation strategies (whitelisting) that we'll focus on during upcoming tutorials

Playlist View


Your Instructor

Zach Roof
Zach Roof

I started my tech tutorial journey when I was bedridden for 6 months because I couldn't get healthcare insurance. While I might of been in extreme physical pain, I persisted because the instructors that I watched during that time filled me with immense joy. Towards the end of that experience, I vowed that once I gained the appropriate expertise, I'd provide quality tutorial content to the greater tech community.

In the years after my disability, I've held positions as a Frontend Developer, Backend Developer, Application Security Engineer and a DevOps/Security Engineer. My professional path has ranged from large corporate settings to an intimate blockchain startup.

Now, the next progression in my journey is to take all of my experience and provide quality security tutorials to the greater tech community.