hacktricks-cloud

mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2026-01-13 21:36:23 -08:00

Author	SHA1	Message	Date
SirBroccoli	468bd28887	Fix XML delimiter formatting and enhance security details Updated formatting of XML delimiters in the documentation to use backticks for clarity. Enhanced explanations regarding memory injection vulnerabilities and defensive measures.	2025-10-23 14:11:10 +02:00
HackTricks News Bot	95d13f8b89	Add content from: When AI Remembers Too Much – Persistent Behaviors in Agents’... - Remove searchindex.js (auto-generated file)	2025-10-10 01:20:09 +00:00
carlospolop	9df8a4ac92	organize aws + new attacks	2025-10-09 12:26:40 +02:00
carlospolop	6dd86b2c9e	rds post recheck	2025-10-07 17:28:10 +02:00
carlospolop	95302db34c	AWS RDS post-exploitation: Out-of-band SQL via Data API + master password reset (Aurora)	2025-10-07 14:04:48 +02:00
SirBroccoli	90bd042880	Merge pull request #219 from JaimePolop/master IAM and KMS Post Exploitation extended	2025-10-07 11:02:17 +02:00
SirBroccoli	1077cf6f89	Update AWS KMS post-exploitation documentation Clarified KMS policy restrictions and updated ransomware sections.	2025-10-07 11:02:01 +02:00
carlospolop	27fd007fdd	lambda attacks recheck	2025-10-07 00:41:18 +02:00
JaimePolop	29e379d07d	IAM and KMS Post Exploitation extended	2025-10-06 19:01:11 +02:00
carlospolop	83663e4f98	dynamoDB attacks recheck	2025-10-06 13:14:59 +02:00
carlospolop	b5b72b0d26	Merge branch 'master' of github.com:HackTricks-wiki/hacktricks-cloud	2025-10-06 11:53:38 +02:00
carlospolop	0f213ea2db	aws secrets manager recheck	2025-10-06 11:53:33 +02:00
SirBroccoli	9508f50485	Update aws-secrets-manager-privesc.md	2025-10-04 11:03:30 +02:00
SirBroccoli	e188809f70	Update aws-secrets-manager-post-exploitation.md	2025-10-04 11:02:17 +02:00
JaimePolop	03a213fcdd	Secrets manager new attacks	2025-10-02 13:23:37 +02:00
JaimePolop	6411d85ebf	KMS DOS explanation	2025-10-01 11:58:25 +02:00
SirBroccoli	8d39c38b58	Merge pull request #216 from HackTricks-wiki/update_Cooking_an_SQL_Injection_Vulnerability_in_Chef_Aut_20250930_182633 Cooking an SQL Injection Vulnerability in Chef Automate	2025-09-30 21:13:40 +02:00
HackTricks News Bot	21b31a3be3	Add content from: Cooking an SQL Injection Vulnerability in Chef Automate - Remove searchindex.js (auto-generated file)	2025-09-30 18:28:35 +00:00
JaimePolop	5d031d4518	Roles Anywhere explanation	2025-09-30 17:50:02 +02:00
SirBroccoli	1e51bb702d	Merge pull request #210 from HackTricks-wiki/update_Forgotten_20250917_063108 Forgotten	2025-09-30 01:24:53 +02:00
SirBroccoli	1111212cbb	Update attacking-kubernetes-from-inside-a-pod.md	2025-09-30 01:07:36 +02:00
SirBroccoli	bb763109dc	Merge pull request #209 from HackTricks-wiki/update_GitHub_Actions__A_Cloudy_Day_for_Security_-_Part_2_20250915_124429 GitHub Actions A Cloudy Day for Security - Part 2	2025-09-30 01:05:33 +02:00
carlospolop	c8957b9107	f	2025-09-30 00:39:12 +02:00
SirBroccoli	de064b1b68	Merge pull request #214 from JaimePolop/master GetFederatedToken & IAM Roles Anywhere Privesc	2025-09-30 00:23:32 +02:00
SirBroccoli	fc5e23269c	Update pentesting-cloud-methodology.md	2025-09-29 23:03:41 +02:00
SirBroccoli	89a2ab54ae	Update pentesting-cloud-methodology.md	2025-09-29 23:03:04 +02:00
JaimePolop	f3afa739ad	Roles Anywhere explanation	2025-09-29 22:53:29 +02:00
JaimePolop	590e54ea9e	stsgetfederatedtoken	2025-09-29 17:15:59 +02:00
JaimePolop	e153dc47b0	stsgetfederatedtoken	2025-09-29 17:14:00 +02:00
HackTricks News Bot	37b03b3517	Add content from: Forgotten - Remove searchindex.js (auto-generated file)	2025-09-17 06:34:24 +00:00
HackTricks News Bot	a6491998d2	Add content from: GitHub Actions: A Cloudy Day for Security - Part 2 - Remove searchindex.js (auto-generated file)	2025-09-15 12:47:04 +00:00
HackTricks News Bot	5b5e339f96	Add content from: Model Namespace Reuse: An AI Supply-Chain Attack Exploiting ... - Remove searchindex.js (auto-generated file)	2025-09-04 13:00:46 +00:00
SirBroccoli	fd19dc2304	Update aws-ecs-privesc.md	2025-08-31 10:06:24 +02:00
Fake1Sback	599d45c50a	Added a separate section about the ecs run-task privesc method, since it was only briefly mentioned in the iam:PassRole, (ecs:UpdateService\|ecs:CreateService) section	2025-08-30 18:52:59 +03:00
carlospolop	d761716a28	f	2025-08-28 19:51:53 +02:00
carlospolop	d05d94d995	f	2025-08-25 23:20:13 +02:00
carlospolop	15ff9a7d1c	f	2025-08-24 13:22:10 +02:00
carlospolop	414eeda035	Merge branch 'master' of github.com:HackTricks-wiki/hacktricks-cloud	2025-08-18 16:51:47 +02:00
carlospolop	dac7b0f906	fix?	2025-08-18 16:51:43 +02:00
SirBroccoli	3b456ebc2e	Merge pull request #195 from HackTricks-wiki/update_How_to_transfer_files_in_AWS_using_SSM_20250806_013457 How to transfer files in AWS using SSM	2025-08-18 16:48:47 +02:00
SirBroccoli	f0df70528a	Update README.md	2025-08-18 16:48:30 +02:00
SirBroccoli	f705477774	Merge pull request #193 from hasshido/master grte-mightocho	2025-08-18 16:37:29 +02:00
carlospolop	aff8ab0252	Merge branch 'master' of github.com:HackTricks-wiki/hacktricks-cloud	2025-08-18 16:36:42 +02:00
carlospolop	06b577d42f	f	2025-08-18 16:36:38 +02:00
SirBroccoli	14e986b2a7	Merge pull request #196 from lambdasawa/master grte-lambdasawa	2025-08-18 16:06:12 +02:00
Tsubasa Irisawa	15bde67918	Add GCP Cloud Tasks privesc page	2025-08-14 23:47:19 +09:00
HackTricks News Bot	3f16d3c5f3	Add content from: How to transfer files in AWS using SSM	2025-08-06 01:38:30 +00:00
afaq	82a44ea4c0	Updated Cognito Identity CLI Command Format Replaced outdated key=value syntax with JSON-based in "--logins" format, keeping the old format for preserved legacy.	2025-08-04 23:56:55 +05:00
hasshido	839f139795	Merge branch 'HackTricks-wiki:master' into master	2025-08-04 12:41:01 +02:00
carlospolop	b82a88252c	f	2025-08-04 11:37:34 +02:00

1 2 3 4 5 ...

353 Commits