gitea-mirror/hacktricks-cloud

mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2025-12-30 06:30:35 -08:00

Files

History

Translator 000a834b89 Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/

2025-05-01 11:39:52 +00:00

..

aws-accounts-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-api-gateway-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-cloudfront-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-codebuild-unauthenticated-access.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-cognito-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-documentdb-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-dynamodb-unauthenticated-access.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-ec2-unauthenticated-enum.md

Translated ['src/pentesting-ci-cd/cloudflare-security/cloudflare-domains

2025-01-11 18:51:48 +00:00

aws-ecr-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-ecs-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-elastic-beanstalk-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-elasticsearch-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-iam-and-sts-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-identity-center-and-sso-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-iot-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-kinesis-video-unauthenticated-enum.md

Translated ['src/README.md', 'src/banners/hacktricks-training.md', 'src/

2024-12-31 20:29:08 +00:00

aws-lambda-unauthenticated-access.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-media-unauthenticated-enum.md

Translated ['src/README.md', 'src/banners/hacktricks-training.md', 'src/

2024-12-31 20:29:08 +00:00

aws-mq-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-msk-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-rds-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-redshift-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-s3-unauthenticated-enum.md

Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/

2025-05-01 11:39:52 +00:00

aws-sns-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

aws-sqs-unauthenticated-enum.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

README.md

Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/

2025-01-02 01:25:21 +00:00

README.md

AWS - Ongeauthentiseerde Enum & Toegang

{{#include ../../../banners/hacktricks-training.md}}

AWS Kredensiaal Lekke

'n Algemene manier om toegang of inligting oor 'n AWS-rekening te verkry, is deur lekke te soek. Jy kan lekke soek deur google dorks, die openbare repos van die organisasie en die werkers van die organisasie in Github of ander platforms te kontroleer, in kredensiaal lekdatabasisse te soek... of in enige ander plek waar jy dalk inligting oor die maatskappy en sy wolkinfrastruktuur kan vind.
Sommige nuttige hulpmiddels:

AWS Ongeauthentiseerde Enum & Toegang

Daar is verskeie dienste in AWS wat geconfigureer kan word om 'n soort toegang aan die hele internet of aan meer mense as verwag te gee. Kyk hier hoe:

Kruisrekening Aanvalle

In die praatjie Breaking the Isolation: Cross-Account AWS Vulnerabilities word voorgestel hoe sommige dienste enige AWS-rekening toegelaat het om toegang te verkry omdat AWS dienste sonder om rekening-ID's te spesifiseer toegelaat is.

Tydens die praatjie spesifiseer hulle verskeie voorbeelde, soos S3-buckets wat cloudtrail (van enige AWS rekening) toelaat om na hulle te skryf:

Ander dienste wat kwesbaar gevind is:

AWS Config
Serverless repository

Hulpmiddels

cloud_enum: Multi-cloud OSINT hulpmiddel. Vind openbare hulpbronne in AWS, Azure, en Google Cloud. Ondersteunde AWS dienste: Open / Beskermde S3 Buckets, awsapps (WorkMail, WorkDocs, Connect, ens.)

{{#include ../../../banners/hacktricks-training.md}}