gitea-mirror/hacktricks-cloud
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2026-01-14 13:56:30 -08:00
Code Issues Packages Projects Releases Wiki Activity

Translated ['src/README.md', 'src/banners/hacktricks-training.md', 'src/

Browse Source
This commit is contained in:
Translator
2024-12-31 20:29:08 +00:00
parent 2753c75e8b
commit 396dbafaf2
245 changed files with 9878 additions and 12609 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
src/pentesting-cloud/aws-security/aws-services/aws-ses-enum.md
View File

@@ -2,45 +2,40 @@
{{#include ../../../banners/hacktricks-training.md}}
## Basic Information
## Basiese Inligting
Amazon Simple Email Service (Amazon SES) is designed for **sending and receiving emails**. It enables users to send transactional, marketing, or notification emails efficiently and securely at scale. It **integrates well with other AWS services**, providing a robust solution for managing email communications for businesses of all sizes.
Amazon Simple Email Service (Amazon SES) is ontwerp om **e-posse te stuur en te ontvang**. Dit stel gebruikers in staat om transaksie-, bemarking- of kennisgewingse-posse doeltreffend en veilig op groot skaal te stuur. Dit **integreer goed met ander AWS-dienste**, wat 'n robuuste oplossing bied vir die bestuur van e-poskommunikasie vir besighede van alle groottes.
You need to register **identities**, which can be domains or emails addresses that will be able to interact with SES (e.g. send and receive emails).
Jy moet **identiteite** registreer, wat domeine of e-posadresse kan wees wat met SES kan interaksie hê (bv. e-posse stuur en ontvang).
### SMTP User
It's possible to connect to a **SMTP server of AWS to perform actions** instead of using the AWS API (or in addition). For this you need to create a user with a policy such as:
### SMTP Gebruiker
Dit is moontlik om te verbind met 'n **SMTP-bediener van AWS om aksies uit te voer** in plaas van om die AWS API te gebruik (of daarby). Hiervoor moet jy 'n gebruiker skep met 'n beleid soos:
```json
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "ses:SendRawEmail",
"Resource": "*"
}
]
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "ses:SendRawEmail",
"Resource": "*"
}
]
}
```
Then, gather the **API key and secret** of the user and run:
Dan, versamel die **API-sleutel en geheim** van die gebruiker en voer uit:
```bash
git clone https://github.com/lisenet/ses-smtp-converter.git
cd ./ses-smtp-converter
chmod u+x ./ses-smtp-conv.sh
./ses-smtp-conv.sh <AccessKeyId> <SecretAccessKey>
```
Dit is ook moontlik om dit vanaf die AWS-konsolweb te doen.
It's also possible to do this from the AWS console web.
### Enumeration
### Enumerasie
> [!WARNING]
> Note that SES has 2 APIs: **`ses`** and **`sesv2`**. Some actions are in both APIs and others are just in one of the two.
> Let daarop dat SES 2 API's het: **`ses`** en **`sesv2`**. Sommige aksies is in albei API's en ander is net in een van die twee.
```bash
# Get info about the SES account
aws sesv2 get-account
@@ -117,7 +112,6 @@ aws ses get-send-quota
## Get statistics
aws ses get-send-statistics
```
### Post Exploitation
{{#ref}}
@@ -125,7 +119,3 @@ aws ses get-send-statistics
{{#endref}}
{{#include ../../../banners/hacktricks-training.md}}