gitea-mirror/hacktricks-cloud
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2025-12-30 22:50:43 -08:00
Code Issues Packages Projects Releases Wiki Activity
Files
1a9158b6cff2b9886df5cde34dcae20c5bbc5a0c
hacktricks-cloud/src/pentesting-cloud/aws-security/aws-privilege-escalation
History
Translator 1a9158b6cf Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-02-06 02:14:46 +00:00
..
aws-cloudformation-privesc
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-codestar-privesc
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-01-05 10:37:29 +00:00
aws-apigateway-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-chime-privesc.md
Translated ['src/README.md', 'src/banners/hacktricks-training.md', 'src/
2024-12-31 20:29:08 +00:00
aws-codebuild-privesc.md
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-01-08 20:44:26 +00:00
aws-codepipeline-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-cognito-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-datapipeline-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-directory-services-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-dynamodb-privesc.md
Translated ['src/pentesting-ci-cd/terraform-security.md', 'src/pentestin
2025-01-05 20:34:05 +00:00
aws-ebs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-ec2-privesc.md
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-02-06 02:14:46 +00:00
aws-ecr-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-ecs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-efs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-elastic-beanstalk-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-emr-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-gamelift.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-glue-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-iam-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-kms-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-lambda-privesc.md
Translated ['src/pentesting-ci-cd/cloudflare-security/cloudflare-domains
2025-01-11 18:51:48 +00:00
aws-lightsail-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-mediapackage-privesc.md
Translated ['src/README.md', 'src/banners/hacktricks-training.md', 'src/
2024-12-31 20:29:08 +00:00
aws-mq-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-msk-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-organizations-prinvesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-rds-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-redshift-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-s3-privesc.md
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-01-06 23:56:57 +00:00
aws-sagemaker-privesc.md
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-01-05 22:57:50 +00:00
aws-secrets-manager-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-sns-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-sqs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-ssm-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-sso-and-identitystore-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-stepfunctions-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-sts-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
aws-workdocs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
eventbridgescheduler-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
README.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:25:21 +00:00
route53-createhostedzone-route53-changeresourcerecordsets-acm-pca-issuecertificate-acm-pca-getcer.md
Translated ['src/README.md', 'src/banners/hacktricks-training.md', 'src/
2024-12-31 20:29:08 +00:00

README.md

AWS - Privilege Escalation

{{#include ../../../banners/hacktricks-training.md}}

AWS Privilege Escalation

Die manier om jou voorregte in AWS te verhoog, is om genoeg toestemmings te hê om op een of ander manier toegang te verkry tot ander rolle/gebruikers/groepe se voorregte. Kettingverhogings totdat jy admin toegang oor die organisasie het.

Warning

AWS het honderde (indien nie duisende nie) toestemmings wat aan 'n entiteit toegeken kan word. In hierdie boek kan jy alle toestemmings wat ek ken vind wat jy kan misbruik om voorregte te verhoog, maar as jy 'n pad ken wat hier nie genoem word nie, deel dit asseblief.

Caution

As 'n IAM-beleid "Effect": "Allow" en "NotAction": "Someaction" het wat 'n bron aandui... beteken dit dat die toegelate prinsiep toestemming het om ENIGIETS te doen behalwe daardie spesifieke aksie.
So onthou dat dit 'n ander manier is om bevoorregte toestemmings aan 'n prinsiep te verleen.

Die bladsye van hierdie afdeling is georden volgens AWS-diens. Daar sal jy toestemmings vind wat jou in staat sal stel om voorregte te verhoog.

Tools

{{#include ../../../banners/hacktricks-training.md}}

Reference in New Issue View Git Blame Copy Permalink