Introduction: Lark is an online, all-in-one collaborative platform offering calendar, document and chat functions. They have a public bug-bounty program at https://hackerone.com/lark_technologies , and offer good bounties with a pretty quick payout time. This write up will detail my process of discovering a potential SSRF, and how I bypassed their existing…