- Repo that aggregates 28 different AWS IAM privilege escalation methods https://github.com/rhinosecuritylabs/aws-iam-privilege-escalation 14 comments netsec
Linking pages
- GitHub - salesforce/cloudsplaining: Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report. https://github.com/salesforce/cloudsplaining 14 comments
- GitHub - rams3sh/Aaia: AWS Identity and Access Management Visualizer and Anomaly Finder https://github.com/rams3sh/Aaia 8 comments
- Identify and Exploit Intentionally Vulnerable IAM… | Bishop Fox https://labs.bishopfox.com/tech-blog/iam-vulnerable-an-aws-iam-privilege-escalation-playground 4 comments
Linked pages
- AWS IAM Privilege Escalation – Methods and Mitigation https://rhinosecuritylabs.com/aws/aws-privilege-escalation-methods-mitigation/ 18 comments
- Escalating AWS IAM Privileges with an Undocumented CodeStar API https://rhinosecuritylabs.com/aws/escalating-aws-iam-privileges-undocumented-codestar-api/ 3 comments
- GitHub - dagrz/aws_pwn: A collection of AWS penetration testing junk https://github.com/dagrz/aws_pwn 3 comments