SSRF Every scan is made server-side - the server probes its own internal Docker network on your behalf, revealing services that are unreachable from the public internet.