Skip to content

Commit

Permalink
Merge pull request #1 from kihakuni/patch-1
Browse files Browse the repository at this point in the history 
Update README.md
  • Loading branch information
@hackersifu
hackersifu authored Feb 22, 2022
2 parents 3348ddb + e1c2206 commit 917c909
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -86,10 +86,10 @@ The following permissions are needed within AWS IAM for CloudSaga to run:
## Specific Scenario Details
```
IMDS Reveal Scenario:
This scenario is based on the attack vector provided by IMDS version 1.
EC2 instances using IMDS version 1 are vulnerable to server side request
forgery (SSRF) attacks, and can be used as a pivot point for privilege
escalation within AWS.
This scenario is based on a server-side request forgery attack.
EC2 instances using IMDS version 1 are more likely to be subject to this
kind of software flaw, and if EC2 Role credentials are present, those
credentials can be used in AWS.
```
```
Bitcoin Mining Scenario:
Expand Down

0 comments on commit 917c909

Please sign in to comment.