I recently had the opportunity to give a talk for Phreaks 2600 on Server-Side Attacks. During this session, we explored various types of server-side attacks, discussing their implications and how to mitigate them effectively. OverviewIn this talk, we covered: Common Server-Side Vulnerabilities: Understanding the weaknesses that can be exploited. Attack Techniques: A deep dive into various attack methods, including: Server-Side Request Forgery (SSRF) Server-Side Template Injection (SSTI) XML ...

S/OAll this documentation was made possible thanks to this Website that goes way deeper in everything listed below, I tried to make it shorter and question-based but for the technical guys here you can go and check out : https://zer1t0.gitlab.io/posts/attacking_ad/ Disclaimer:English is not my native language, so there may be grammar mistakes in this document. Additionally, as I’m not a cybersecurity professional, there might be technical inaccuracies present. If you notice any mist...