Last updated
Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
For more information:
AWS - SNS EnumIn several cases, SNS topics are used to send messages to platforms that are being monitored (emails, slack messages...). If an attacker prevents sending the messages that alert about it presence in the cloud, he could remain undetected.
sns:DeleteTopicAn attacker could delete an entire SNS topic, causing message loss and impacting applications relying on the topic.
Potential Impact: Message loss and service disruption for applications using the deleted topic.
sns:PublishAn attacker could send malicious or unwanted messages to the SNS topic, potentially causing data corruption, triggering unintended actions, or exhausting resources.
Potential Impact: Data corruption, unintended actions, or resource exhaustion.
sns:SetTopicAttributesAn attacker could modify the attributes of an SNS topic, potentially affecting its performance, security, or availability.
Potential Impact: Misconfigurations leading to degraded performance, security issues, or reduced availability.
sns:Subscribe , sns:UnsubscribeAn attacker could subscribe or unsubscribe to an SNS topic, potentially gaining unauthorized access to messages or disrupting the normal functioning of applications relying on the topic.
Potential Impact: Unauthorized access to messages, service disruption for applications relying on the affected topic.
sns:AddPermission , sns:RemovePermissionAn attacker could grant unauthorized users or services access to an SNS topic, or revoke permissions for legitimate users, causing disruptions in the normal functioning of applications that rely on the topic.
Potential Impact: Unauthorized access to the topic, message exposure, or topic manipulation by unauthorized users or services, disruption of normal functioning for applications relying on the topic.
sns:TagResource , sns:UntagResourceAn attacker could add, modify, or remove tags from SNS resources, disrupting your organization's cost allocation, resource tracking, and access control policies based on tags.
Potential Impact: Disruption of cost allocation, resource tracking, and tag-based access control policies.
Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
