Instance Metadata Service
IMDS is the endpoint a cloud virtual machine queries for information about itself, including the temporary credentials of its attached role. Attackers abuse it through SSRF vulnerabilities to steal those credentials, which was the core of the 2019 Capital One breach. AWS responded with IMDSv2, which requires a session token, and enforcing it is now a standard cloud hardening step.