gitea-mirror/hacktricks-cloud
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2025-12-28 13:43:24 -08:00
Code Issues Packages Projects Releases Wiki Activity
Files
6d8d9dd7325b54f3d9b1d6fba4c2617f7115bb89
hacktricks-cloud/src/pentesting-cloud/aws-security/aws-privilege-escalation
History
Translator 6d8d9dd732 Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-02-13 09:54:36 +00:00
..
aws-cloudformation-privesc
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-codestar-privesc
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-01-05 10:37:37 +00:00
aws-apigateway-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-chime-privesc.md
Translated ['src/README.md', 'src/banners/hacktricks-training.md', 'src/
2024-12-31 20:45:32 +00:00
aws-codebuild-privesc.md
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-01-08 20:44:45 +00:00
aws-codepipeline-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-cognito-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-datapipeline-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-directory-services-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-dynamodb-privesc.md
Translated ['src/pentesting-ci-cd/terraform-security.md', 'src/pentestin
2025-01-05 20:58:45 +00:00
aws-ebs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-ec2-privesc.md
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-02-06 02:14:33 +00:00
aws-ecr-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-ecs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-efs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-elastic-beanstalk-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-emr-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-gamelift.md
Translated ['src/README.md', 'src/banners/hacktricks-training.md', 'src/
2024-12-31 20:45:32 +00:00
aws-glue-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-iam-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-kms-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-lambda-privesc.md
Translated ['src/pentesting-ci-cd/cloudflare-security/cloudflare-domains
2025-01-11 19:05:51 +00:00
aws-lightsail-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-macie-privesc.md
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-02-13 09:54:36 +00:00
aws-mediapackage-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-mq-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-msk-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-organizations-prinvesc.md
Translated ['src/README.md', 'src/banners/hacktricks-training.md', 'src/
2024-12-31 20:45:32 +00:00
aws-rds-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-redshift-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-s3-privesc.md
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-01-06 23:56:44 +00:00
aws-sagemaker-privesc.md
Translated ['src/pentesting-cloud/aws-security/aws-privilege-escalation/
2025-01-05 22:58:04 +00:00
aws-secrets-manager-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-sns-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-sqs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-ssm-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-sso-and-identitystore-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-stepfunctions-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-sts-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
aws-workdocs-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
eventbridgescheduler-privesc.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
README.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00
route53-createhostedzone-route53-changeresourcerecordsets-acm-pca-issuecertificate-acm-pca-getcer.md
Translated ['src/banners/hacktricks-training.md', 'src/pentesting-ci-cd/
2025-01-02 01:50:55 +00:00

README.md

AWS - Privilege Escalation

{{#include ../../../banners/hacktricks-training.md}}

AWS Privilege Escalation

AWSで権限を昇格させる方法は、他のロール/ユーザー/グループの権限にアクセスできるだけの十分な権限を持つことです。昇格を連鎖させて、組織に対する管理者アクセスを得ることができます。

Warning

AWSには、エンティティに付与できる数百(場合によっては数千)の権限があります。この本では、権限を昇格させるために悪用できるすべての権限を見つけることができますが、ここに記載されていないパスを知っている場合は、共有してください

Caution

IAMポリシーに"Effect": "Allow""NotAction": "Someaction"があり、リソースを示している場合... それは許可された主体指定されたアクション以外のすべてを行う権限を持っていることを意味します。
したがって、これは主体に特権的な権限を付与する別の方法であることを覚えておいてください。

このセクションのページはAWSサービスによって整理されています。そこでは、権限を昇格させることができる権限を見つけることができます。

Tools

{{#include ../../../banners/hacktricks-training.md}}

Reference in New Issue View Git Blame Copy Permalink