Metabadger

Metabadger

#Network & Cloud#Cloud Security

Find exposed AWS cloud assets that you did not know you had.

Metabadger Prevents SSRF Attacks on AWS EC2

Metabadger effectively helps prevent SSRF attacks on AWS EC2 by automating the upgrade process to the more secure Instance Metadata Service v2 (IMDSv2). This ensures that your instances are better protected against potential vulnerabilities.

It Diagnoses Current Usage and Prepares for Upgrades

It assesses the current usage, gets ready for upgrades, and enables the option to disable the service when it is not necessary, thereby reducing the attack surface. Metabadger helps you prepare for upgrading to version 2 of the Instance Metadata service, which is essential for protecting against vulnerabilities in version 1.

It enables you to update instances

It enables you to specifically update your instances to exclusively use IMDSv2.

It also provides you with the

It also provides you with the option to disable the Instance Metadata service when it is not needed. This action helps to reduce the attack surface.

Understanding the AWS Metadata Service

The AWS metadata service provides you with access to various information within an instance, including the instance role credential and session token. There are known SSRF vulnerabilities that exploit this service, allowing attackers to use it as a pivot point to gain access to your environment.

Understanding Notable Attacks and the Importance of IMDSv2

You may have heard of notable attacks that utilized a method to gain access through a vulnerable web application, which had access to the instance metadata service. An attacker could extract credentials from the metadata service and use them outside of that specific instance. IMDSv2 and Its Importance: It is crucial to ensure that instances are configured to use IMDSv2.

Recommended Configuration for New Instances

This document outlines the recommended configuration for setting up new instances.

It is also recommended to enhance security by

It is also recommended to turn off the instance metadata service in situations where it is not necessary.

This is to Minimize the Attack Surface

Metabadger assists you in achieving this goal.

Preparation for Upgrading to IMDSv2

This resource assists you in preparing for the upgrade to IMDSv2.

Assistance in Updating to IMDSv2

This feature assists you in updating your instances to exclusively utilize IMDSv2.

It assists you in disabling the

It assists you in disabling the instance metadata service in situations where it is not needed.

This is to reduce the attack surface effectively

Metabadger assists you in achieving this goal.

It helps you get ready for

It helps you get ready for the upgrade to IMDSv2.

It assists you in updating your

It assists you in updating your instances to exclusively use IMDSv2.

It helps you disable the instance metadata service

It assists you in disabling the instance metadata service in situations where it is not needed.

Other AI Tools

PCAPdroid

PCAPdroid

A tool for discovering open S3 Buckets starting from a domain using various techniques such as crawling and DNS crawling.

PacketQ

PacketQ

Network metadata capture and analysis tool

Palo Alto Networks - Prisma SASE

Palo Alto Networks - Prisma SASE

DirSearch is a simple tool for finding files and directories on a web server.

Passive Network Audit Framework (PNAF) v0.1.2

Passive Network Audit Framework (PNAF) v0.1.2

A tool to discover new target domains using Content Security Policy

PFQ v6.2

PFQ v6.2

6Guard is an IPv6 attack detector sponsored by Google Summer of Code 2012 and supported by The Honeynet Project organization.

PF_RING ZC (Zero Copy)

PF_RING ZC (Zero Copy)

A honeypot designed to detect and analyze malicious activities in instant messaging platforms.