local file inclusion - Infosec Rabbit Holes

Infosec Rabbit Holes

Sign in Subscribe

local file inclusion

A collection of 2 posts

GCP Cloud Function Abuse

Cloud Security Featured

GCP Cloud Function Abuse

Article discussing GCP Cloud Function Abuse covering Local File Inclusion (LFI), Server-Side Request Forgery (SSRF), and Command Injection vulnerabilities. Explains how these vulnerabilities can be exploited to get access to authorization tokens and other sensitive information.

Azure Function App Abuse

Cloud Security Featured

Azure Function App Abuse

Azure Function Apps: discover and exploit vulnerabilities like LFI and SSRF to gain access to source code and environment variables. Tutorial and demo in Python.