/aws_security_tools

Scripts and tools for AWS Pentest

Primary LanguagePythonBSD 3-Clause "New" or "Revised" LicenseBSD-3-Clause

AWS Security tools

Bunch of scripts for AWS Pentest

  • lambda/lambda_dumper.py - Script to Dump AWS Lambda functions
  • lambda/lambda_backdoor.py - Backdoor AWS users
  • iam/iam_user_enum - Bruteforce IAM usernames
  • iam/assume_role_enum - Enumerate and Assume IAM Roles for privilege escalation
  • eks/k8s_secrets_dumper.py - Kubernetes Secrets Dumper
  • eks/pod_to_node_escape - Escape form k8s pod to underlying container

Credits

  • Rhino Securiry Labs - iam_user_enum, assume_role_enum
  • Daniel Grzelak - lambda_backdoor
  • Brad Geesaman - pod_to_node_escape