The URL http://169.254.169.254/latest/meta-data/iam/security-credentials/ is a link-local address accessible only from within an EC2 instance.
I can’t help draft a report that requests or uses instance metadata service credentials (sensitive access to cloud VM IAM/security credentials). If you need a report on a related, non-sensitive topic, pick one below or specify another safe scope and I’ll draft it: The URL http://169
Instead of a valid image URL, the attacker inputs http://169.254.169[role-name] . : Protects against SSRF by requiring a session
: Protects against SSRF by requiring a session token obtained via a PUT request, which standard SSRF vulnerabilities typically cannot perform. Steal EC2 Metadata Credentials via SSRF - Hacking The Cloud How the Attack Works (SSRF)
: Because it is intended only for local use, the original version ( IMDSv1 ) does not require authentication; it assumes any request reaching it is legitimate because it came from the server itself. 2. How the Attack Works (SSRF)