webPromedium

Lab 104 — CloudOps Copilot — AI SSRF via Infrastructure Tool Abuse

hackadvisor

Task: AI-powered DevOps dashboard (CloudOps Copilot) with an AI assistant that has a check_endpoint tool making server-side HTTP requests without URL validation. Solution: abuse the AI copilot's check_endpoint tool as an SSRF proxy to port-scan localhost, discover internal cloud metadata service on port 3001, and exfiltrate AWS credentials containing the flag.

$ ls tags/ techniques/

ssrf nodejs llm decoy_flag internal_service_discovery cloud_metadata ai_copilot aws imdsv1 port_scanning tool_abuse

honeypot_flag_detectionssrf_via_ai_toolinternal_port_scanningcloud_metadata_credential_theftlocalhost_ip_blocklist_bypass

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[web][Pro]Lab 205 — DockForge — SSRF in Webhook Test Endpoint— hackadvisor
[web][Pro]CloudPulse— hackadvisor
[web][Pro]Lab 103 — DataPilot — AI SQL Injection via Natural Language Query— hackadvisor
[web][Pro]Lab 384 — DevPulse — RCE via AI Log Assistant Prompt Injection— hackadvisor
[web][Pro]Lab 105 — WriteFlow — Indirect Prompt Injection via Document Analysis— hackadvisor