[Bug]AWS "SNS" and "SQS" were not inspected
Closed this issue · 2 comments
motikan2010 commented
Description of Bug
When "cloudfox aws all-checks
" was specified at runtime, "sns
" and "sqs
" were not checked.
Version: v1.10.1
Ex.
$ ./cloudfox aws all-checks --profile MY_PROFILE
(...snip...)
[inventory][(...MY_PROFILE...)] Enumerating selected services in all regions for account 36xxxxxxxxxx.
(...snip...)
[tags][(...MY_PROFILE...)] Enumerating tags for account 36xxxxxxxxxx.
(...snip...)
[instances][(...MY_PROFILE...)] Enumerating EC2 instances in all regions for account 36xxxxxxxxxx
(...snip...)
[lambda][(...MY_PROFILE...)] Enumerating lambdas for account 36xxxxxxxxxx.
(...snip...)
[route53][(...MY_PROFILE...)] Enumerating Route53 for account 36xxxxxxxxxx.
(...snip...)
[filesystems][(...MY_PROFILE...)] Enumerating filesystems for account 36xxxxxxxxxx.
(...snip...)
[endpoints][(...MY_PROFILE...)] Enumerating endpoints for account 36xxxxxxxxxx.
(...snip...)
[ecs-tasks][(...MY_PROFILE...)] Enumerating ECS tasks in all regions for account 36xxxxxxxxxx
(...snip...)
[eks][(...MY_PROFILE...)] Enumerating EKS clusters for account 36xxxxxxxxxx.
(...snip...)
[elastic-network-interfaces][(...MY_PROFILE...)] Enumerating elastic network interfaces in all regions for account 36xxxxxxxxxx
(...snip...)
[instances][(...MY_PROFILE...)] Enumerating EC2 instances in all regions for account 36xxxxxxxxxx
(...snip...)
[env-vars][(...MY_PROFILE...)] Enumerating environment variables in all regions for account 36xxxxxxxxxx.
(...snip...)
[cloudformation][(...MY_PROFILE...)] Enumerating cloudformation stacks for account 36xxxxxxxxxx.
(...snip...)
[buckets][(...MY_PROFILE...)] Enumerating buckets for account 36xxxxxxxxxx.
(...snip...)
[ecr][(...MY_PROFILE...)] Enumerating container repositories for account 36xxxxxxxxxx.
(...snip...)
[secrets][(...MY_PROFILE...)] Enumerating secrets for account 36xxxxxxxxxx.
(...snip...)
[ram][(...MY_PROFILE...)] Enumerating shared resources for account 36xxxxxxxxxx.
(...snip...)
[network-ports][(...MY_PROFILE...)] Enumerating potentially accessible network services for account 36xxxxxxxxxx.
(...snip...)
[principals][(...MY_PROFILE...)] Enumerating IAM Users and Roles for account 36xxxxxxxxxx.
(...snip...)
[permissions][(...MY_PROFILE...)] Enumerating IAM permissions for account 36xxxxxxxxxx.
(...snip...)
[access-keys][(...MY_PROFILE...)] Mapping user access keys for account: 36xxxxxxxxxx.
(...snip...)
[role-trusts][(...MY_PROFILE...)] Enumerating role trusts for account 36xxxxxxxxxx.
(...snip...)
[pmapper][(...MY_PROFILE...)] Looking for pmapper data for this account and building a PrivEsc graph in golang if it exists.
(...snip...)
[iam-simulator][(...MY_PROFILE...)] Running multiple iam-simulator queries for account 36xxxxxxxxxx. (This command can be pretty slow, FYI)
(...snip...)
sethsec-bf commented
Pushed #35 to main, thanks @motikan2010!
motikan2010 commented
I can confirm that it has been fixed. Thank you.