Request-url-http-3a-2f-2f169.254.169.254-2flatest-2fmeta Data-2fiam-2fsecurity Credentials-2f [work] 〈FHD | 1080p〉

: In an SSRF attack, an attacker "tricks" a vulnerable web application into making a request to this internal URL on their behalf.

The URL http://169.254.169.254/latest/meta-data/iam/security-credentials/ is a link-local address accessible only from within an EC2 instance. : In an SSRF attack, an attacker "tricks"

: Vulnerable to simple SSRF because it uses standard HTTP GET requests. : In an SSRF attack