Robert Hansen presents an interesting paper on using websites to hack intranets. There is good awareness about hacking intranets by using browsers, however, this paper explains how the web server can be hack your intranet. The concept rests on allowing file uploads over remote HTTP requests and elaborates on following techniques:
- port sweeping
- fingerprinting potential vulnerable applications
- hacking the Intranet website.
Go through the paper, it is important because this has been commonly ignored.