Lab: Blind SSRF with Shellshock exploitation

This site uses analytics software which fetches the URL specified in the Referer header when a product page is loaded. To solve the lab, use this

Blind SSRF with Shellshock exploitation (Video Solution)

Linux Exploitation – Shellshock exploit and privilege escalation

TryHackMe Advent of Cyber 2 [2020]

Server-Side Request Forgery (SSRF), Common Attacks & Risks

Shell Shock Lab

PortSwigger - All Labs - Web Security Academy, PDF

A Glossary of Blind SSRF Chains – Assetnote

Free Cybersecurity & Hacking Training

服务端请求伪造SSRF漏洞-7个实验（全）-云社区-华为云

Blind SSRF with Shellshock exploitationをやってみた - Shikata Ga Nai

Server side request forgery vulnerabilities (SSRF) - Các lỗ hổng