AWS: IAM CreateAccessKey Privilege Escalation
π₯ Telegram: https://t.me/hackinarticles
β΄ Twitter: https://x.com/hackinarticles
In this lab, we will show how a low-privileged IAM user can misuse the iam:CreateAccessKey permission where user is allowed to create access keys for another IAM user who can take on elevated roles, leading to privilege escalation.
π About iam:CreateAccessKey
π§ͺ Lab Setup and Prerequisite
ποΈ Part 1: IAM Lab Setup
βπ Creating High Privileged IAM User
βπ Creating Low Privileged IAM User
π΅οΈ Part 2: Enumeration and Exploitation
βπ Prerequisite for Pentest
βπ₯οΈ Configuring AWS CLI With Low Privileged User Credentials
βπ₯ Enumerating IAM Users with AWS CLI
βπ₯ IAM CreateAccessKey Exploitation
π Analysis
β Recommendations
π Conclusion
π₯ Telegram: https://t.me/hackinarticles
β΄ Twitter: https://x.com/hackinarticles
In this lab, we will show how a low-privileged IAM user can misuse the iam:CreateAccessKey permission where user is allowed to create access keys for another IAM user who can take on elevated roles, leading to privilege escalation.
π About iam:CreateAccessKey
π§ͺ Lab Setup and Prerequisite
ποΈ Part 1: IAM Lab Setup
βπ Creating High Privileged IAM User
βπ Creating Low Privileged IAM User
π΅οΈ Part 2: Enumeration and Exploitation
βπ Prerequisite for Pentest
βπ₯οΈ Configuring AWS CLI With Low Privileged User Credentials
βπ₯ Enumerating IAM Users with AWS CLI
βπ₯ IAM CreateAccessKey Exploitation
π Analysis
β Recommendations
π Conclusion
β€2
π₯ OSCP+/CTF Exam Practice Training (Online) π₯ β Register Now! π
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Join IGNITE TECHNOLOGIESβ exclusive "Capture the Flag" Training Program and enhance your skills with the following modules:
π§ Introduction
π Information Gathering
𧱠Vulnerability Scanning
π Windows Privilege Escalation
π§ Linux Privilege Escalation
π‘οΈ Client-Side Attacks
π Web Application Attacks
𧬠Password Attacks
π§ Tunneling & Pivoting
π° Active Directory Attacks
π£ Exploiting Public Exploits
π Report Writing
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Join IGNITE TECHNOLOGIESβ exclusive "Capture the Flag" Training Program and enhance your skills with the following modules:
π§ Introduction
π Information Gathering
𧱠Vulnerability Scanning
π Windows Privilege Escalation
π§ Linux Privilege Escalation
π‘οΈ Client-Side Attacks
π Web Application Attacks
𧬠Password Attacks
π§ Tunneling & Pivoting
π° Active Directory Attacks
π£ Exploiting Public Exploits
π Report Writing
WPScan: WordPress Pentesting Framework
β΄ Twitter: https://lnkd.in/e7yRpDpY
π₯ Telegram: https://t.me/hackinarticles
In this article, weβll try to deface such WordPress websites, with one of the most powerful WordPress vulnerability Scanner i.e WPScan.
π Introduction
π Enumerating the WordPress Web Application
βπ¦ Version Scanning
βπ¨ WordPress Themes
βπ WordPress Plugins
βπ€ WordPress Usernames
βπ§Ύ All in a Single Command
π₯ WordPress Exploitation
βπ― Brute Force Attack Using WPScan
βπ Shell Upload Using Metasploit
β𧨠Vulnerable Plugin Exploitation
π΅οΈ Scanning Over a Proxy Server
π Scanning With an HTTP Authentication Enabled
β΄ Twitter: https://lnkd.in/e7yRpDpY
π₯ Telegram: https://t.me/hackinarticles
In this article, weβll try to deface such WordPress websites, with one of the most powerful WordPress vulnerability Scanner i.e WPScan.
π Introduction
π Enumerating the WordPress Web Application
βπ¦ Version Scanning
βπ¨ WordPress Themes
βπ WordPress Plugins
βπ€ WordPress Usernames
βπ§Ύ All in a Single Command
π₯ WordPress Exploitation
βπ― Brute Force Attack Using WPScan
βπ Shell Upload Using Metasploit
β𧨠Vulnerable Plugin Exploitation
π΅οΈ Scanning Over a Proxy Server
π Scanning With an HTTP Authentication Enabled
β€2
Bug Bounty Training Program (Online)
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Hurry up, get enrolled yourself with IGNITE TECHNOLOGIESβ fully exclusive Training Program βBug Bounty.β
βοΈ Table of Content
π Introduction to WAPT & OWASP Top 10
π οΈ Pentest Lab Setup
π Information Gathering & Reconnaissance
π» Netcat for Pentester
βοΈ Configuration Management Testing
π Cryptography
π Authentication
π Session Management
π Local File Inclusion
π Remote File Inclusion
π Path Traversal
π£ OS Command Injection
π Open Redirect
π€ Unrestricted File Upload
π PHP Web Shells
π HTML Injection
π Cross-Site Scripting (XSS)
π Client-Side Request Forgery
π SQL Injection
π XXE Injection
π Bonus Section
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Hurry up, get enrolled yourself with IGNITE TECHNOLOGIESβ fully exclusive Training Program βBug Bounty.β
βοΈ Table of Content
π Introduction to WAPT & OWASP Top 10
π οΈ Pentest Lab Setup
π Information Gathering & Reconnaissance
π» Netcat for Pentester
βοΈ Configuration Management Testing
π Cryptography
π Authentication
π Session Management
π Local File Inclusion
π Remote File Inclusion
π Path Traversal
π£ OS Command Injection
π Open Redirect
π€ Unrestricted File Upload
π PHP Web Shells
π HTML Injection
π Cross-Site Scripting (XSS)
π Client-Side Request Forgery
π SQL Injection
π XXE Injection
π Bonus Section
β€1
IDAPro Cheatsheet
π΄β«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/IDAPro/IDAPro%20Cheatsheet%20HD.png
π΄β«Full HD: https://github.com/Ignitetechnologies/Mindmap/blob/main/IDAPro/IDAPro%20Cheatsheet%20HD.png
π Infosec Characters - Desi Cybersecurity Edition
π‘οΈ Firewall
The Protective Father β "No entry without approval!"
π IDS/IPS
The Suspicious Buaji β "Sniffing out shady vibes since forever!"
π Vulnerability Scanner
The Perfectionist Planner β "Finds every crack before the baraat arrives!"
π― Honeypot
The Decoy Bride β "Come at me, hackers!"
π VPN
The Shortcut Rickshaw Wala β "Changes your route, hides your tracks!"
π’ SIEM
The Chuchi Aunty β "Watches silently, alerts loudly!"
π€ SOAR
The Wedding Coordinator β "Automates chaos into action!"
π Data Encryption
The Cunning Bhabhi β "Knows all secrets but keeps them locked!"
π EDR
The Overprotective Bhaiyya β "Punches malware before it blinks!"
π DLP
The Gold-Watching Mami β "Stops data thieves like a hawk!"
π± MFA
The Extra-Cautious Nani β "Needs OTP, Aadhaar, and your blood group!"
π Follow for more: @hackinarticles
π‘οΈ Firewall
The Protective Father β "No entry without approval!"
π IDS/IPS
The Suspicious Buaji β "Sniffing out shady vibes since forever!"
π Vulnerability Scanner
The Perfectionist Planner β "Finds every crack before the baraat arrives!"
π― Honeypot
The Decoy Bride β "Come at me, hackers!"
π VPN
The Shortcut Rickshaw Wala β "Changes your route, hides your tracks!"
π’ SIEM
The Chuchi Aunty β "Watches silently, alerts loudly!"
π€ SOAR
The Wedding Coordinator β "Automates chaos into action!"
π Data Encryption
The Cunning Bhabhi β "Knows all secrets but keeps them locked!"
π EDR
The Overprotective Bhaiyya β "Punches malware before it blinks!"
π DLP
The Gold-Watching Mami β "Stops data thieves like a hawk!"
π± MFA
The Extra-Cautious Nani β "Needs OTP, Aadhaar, and your blood group!"
π Follow for more: @hackinarticles
β€2
π Active Directory Penetration Training (Online) β Register Now! π
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Limited slots available! Hurry up to secure your spot in this exclusive training program offered by Ignite Technologies.
βοΈ Comprehensive Table of Contents:
π Initial Active Directory Exploitation
π Active Directory Post-Enumeration
π Abusing Kerberos
π§° Advanced Credential Dumping Attacks
π Privilege Escalation Techniques
π Persistence Methods
π Lateral Movement Strategies
π‘οΈ DACL Abuse (New)
π΄ ADCS Attacks (New)
π Saphire and Diamond Ticket Attacks (New)
π Bonus Sessions
#infosec #cybersecurity #cybersecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #offensivesecurity #infosecurity #cyberattacks #security #oscp #cybersecurityawareness #bugbounty #bugbountytips
π Register here: https://forms.gle/bowpX9TGEs41GDG99
π¬ WhatsApp: https://wa.me/message/HIOPPNENLOX6F1
π§ Email: info@ignitetechnologies.in
Limited slots available! Hurry up to secure your spot in this exclusive training program offered by Ignite Technologies.
βοΈ Comprehensive Table of Contents:
π Initial Active Directory Exploitation
π Active Directory Post-Enumeration
π Abusing Kerberos
π§° Advanced Credential Dumping Attacks
π Privilege Escalation Techniques
π Persistence Methods
π Lateral Movement Strategies
π‘οΈ DACL Abuse (New)
π΄ ADCS Attacks (New)
π Saphire and Diamond Ticket Attacks (New)
π Bonus Sessions
#infosec #cybersecurity #cybersecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #offensivesecurity #infosecurity #cyberattacks #security #oscp #cybersecurityawareness #bugbounty #bugbountytips