AWS - API Gateway Persistence

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

API Gateway

For more information go to:

Modify the resource policy of the API gateway(s) to grant yourself access to them

Modify the code of lambda authorizers to grant yourself access to all the endpoints. Or just remove the use of the authorizer.

If a resource is using IAM authorizer you could give yourself access to it modifying IAM permissions. Or just remove the use of the authorizer.

If API keys are used, you could leak them to maintain persistence or even create new ones. Or just remove the use of API keys.

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

Last updated 4 months ago