gitea-mirror/hacktricks-cloud
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2026-01-01 07:25:51 -08:00
Code Issues Packages Projects Releases Wiki Activity
Files
154465e69f246770f32ce8a0abe6b1e5acba7541
hacktricks-cloud/src/pentesting-cloud/aws-security/aws-post-exploitation/aws-secrets-manager-post-exploitation.md

1.3 KiB
Raw Blame History

AWS - Secrets Manager Post Exploitation

{{#include ../../../banners/hacktricks-training.md}}

Secrets Manager

Vir meer inligting, kyk:

{{#ref}} ../aws-services/aws-secrets-manager-enum.md {{#endref}}

Lees Secrets

Die secrets self is sensitiewe inligting, kyk die privesc bladsy om te leer hoe om hulle te lees.

DoS Verander Secret Waarde

Deur die waarde van die secret te verander, kan jy DoS al die stelsels wat op daardie waarde afhanklik is.

Warning

Let daarop dat vorige waardes ook gestoor word, so dit is maklik om net terug te gaan na die vorige waarde.

# Requires permission secretsmanager:PutSecretValue
aws secretsmanager put-secret-value \
--secret-id MyTestSecret \
--secret-string "{\"user\":\"diegor\",\"password\":\"EXAMPLE-PASSWORD\"}"

DoS Verander KMS-sleutel

aws secretsmanager update-secret \
--secret-id MyTestSecret \
--kms-key-id arn:aws:kms:us-west-2:123456789012:key/EXAMPLE1-90ab-cdef-fedc-ba987EXAMPLE

DoS Verwydering van Geheim

Die minimum aantal dae om 'n geheim te verwyder is 7

aws secretsmanager delete-secret \
--secret-id MyTestSecret \
--recovery-window-in-days 7

{{#include ../../../banners/hacktricks-training.md}}

Reference in New Issue View Git Blame Copy Permalink