In this section, I'm going to show you how to discover and exploit server-side requests, forgery vulnerabilities or SSRF.

According to OWASP top 10 most common threaths, SSRF is actually number 10, so it is the least common vulnerability of everything that we're going to cover in this course.

But it can be very, very dangerous.

And huge companies like Google were vulnerable too, and previously, and because of its really high impact and because it was very dangerous, Google actually paid over 130,000 USD to the hunter that discovered this vulnerability.

So if you want to be cashing big bounties like this one, make sure you keep your eyes open and practice what I'm going to show you.