← LibraryTechnique entry
PKI-ACME-HTTP01Initial Access
ACME HTTP-01 Validation via SSRF
Force the target's origin to fetch /.well-known/acme-challenge/... from an attacker-controlled path — attacker proves control of the hostname they target.
§ Where this technique fits
PKI-ACME-HTTP01 is catalogued under the Initial Access tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.