HackTricks Cloud
HackTricks Cloud
Ask or search…
Comment on page

AWS - Privilege Escalation

Support HackTricks and get benefits!

AWS Privilege Escalation

The way to escalate your privileges in AWS is to have enough permissions to be able to, somehow, access other roles/users/groups privileges. Chaining escalations until you have admin access over the organization.
AWS has hundreds (if not thousands) of permissions that an entity can be granted. In this book you can find all the permissions that I know that you can abuse to escalate privileges, but if you know some path not mentioned here, please share it.
If an IAM policy has "Effect": "Allow" and "NotAction": "Someaction" indicating a resource... that means that the allowed principal has permission to do ANYTHING but that specified action. So remember that this is another way to grant privileged permissions to a principal.
You can find all the privesc paths divided by services:



Support HackTricks and get benefits!