Report: Suspicious Webhook URL
The full URL broken down:
for securely validating webhook URLs to prevent these SSRF attacks? How Orca Found SSRF Vulnerabilities in 4 Azure Services Report: Suspicious Webhook URL The full URL broken
This is the Azure Instance Metadata Service (IMDS) endpoint used for Managed Identities. Webhook design
The provided string webhook-url-http-3A-2F-2F169.254.169.254-2Fmetadata-2Fidentity-2Foauth2-2Ftoken decodes to a URL targeting the Azure Instance Metadata Service (IMDS). This is a high-severity security finding indicative of a Server-Side Request Forgery (SSRF) attack attempt, specifically aimed at cloud credential theft. specifically aimed at cloud credential theft.