AWS EC2 has a feature called the Instance Metadata Service. This enables any EC2 instance to access a REST API running on 169.254.169.254, which returns data about the instance itself. An SSRF vulnerability can employ this technique to acquire credentials for AWS services.
Read More