https://x3ric.com/blog/tags/ssrf/CTF notes, systems work, and writeups.Hugoen-usSat, 06 Jun 2026 21:41:13 +0200https://x3ric.com/blog/posts/HackTheBox-CachedWeb-Challenge/https://x3ric.com/blog/posts/HackTheBox-CachedWeb-Challenge/Tue, 23 Sep 2025 00:20:00 +0800challengehtbwebssrfpath-traversalfile-uploadrceflaskCachedWeb: chain SSRF with path control to reach the internal target and read the flag.https://x3ric.com/blog/posts/HackTheBox-Interstellar-Challenge/https://x3ric.com/blog/posts/HackTheBox-Interstellar-Challenge/Fri, 24 Jan 2025 00:20:00 +0800challengehtbwebsql-injectionssrfrcephpEnter the challenge flag to unlock this writeup.https://x3ric.com/blog/posts/HackTheBox-DoxPit-Challenge/https://x3ric.com/blog/posts/HackTheBox-DoxPit-Challenge/Thu, 12 Dec 2024 09:20:00 +0800challengehtbwebtemplate-injectionssrffile-uploadflaskEnter the challenge flag to unlock this writeup.https://x3ric.com/blog/posts/HackTheBox-ScreenCrack-Challenge/https://x3ric.com/blog/posts/HackTheBox-ScreenCrack-Challenge/Tue, 03 Dec 2024 09:20:00 +0800challengehtbwebssrfrcephpEnter the challenge flag to unlock this writeup.https://x3ric.com/blog/posts/HackTheBox-Weather-App-Challenge/https://x3ric.com/blog/posts/HackTheBox-Weather-App-Challenge/Sat, 30 Nov 2024 09:20:00 +0800challengehtbwebssrfWeather App: use SSRF to reach the hidden service or file path and pull the flag.