AWS - RDS Persistence
RDS
For more information check:
Make instance publicly accessible: rds:ModifyDBInstance
rds:ModifyDBInstance
An attacker with this permission can modify an existing RDS instance to enable public accessibility.
Create an admin user inside the DB
An attacker could just create a user inside the DB so even if the master users password is modified he doesn't lose the access to the database.
Make snapshot public
Last updated