2 docs tagged with "OAST"

Exploiting blind XXE to exfiltrate data out-of-band

--> In this lab the server is working asynchronously that's why output redirecion or blind command injection will not work but we can make sure the server is vulnerable with the nslookup in linux which is command for DNS lookup.