hacktricks-cloud/pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-sns-unauthenticated-enum.md at 5ef56bb6b38468e009a1ce34747dd626ea22acb7

mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2025-12-28 05:33:10 -08:00

Files

Carlos Polop 5ef56bb6b3 Recreating repository history for branch master

2024-12-12 19:35:48 +01:00

3.0 KiB

Raw Blame History

{% hint style="success" %} Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

{% endhint %}

SNS

For more information about SNS check:

{% content-ref url="../aws-services/aws-sns-enum.md" %} aws-sns-enum.md {% endcontent-ref %}

Open to All

When you configure a SNS topic from the web console it's possible to indicate that Everyone can publish and subscribe to the topic:

So if you find the ARN of topics inside the account (or brute forcing potential names for topics) you can check if you can publish or subscribe to them.

{% hint style="success" %} Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

{% endhint %}

3.0 KiB Raw Blame History

AWS - SNS Unauthenticated Enum

SNS

Open to All

3.0 KiB

Raw Blame History