iam:PassRole, cloudformation:CreateStack,and cloudformation:DescribeStacks
Last updated
Last updated
Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
An attacker could for example use a cloudformation template that generates keys for an admin user like:
Then generate the cloudformation stack:
Wait for a couple of minutes for the stack to be generated and then get the output of the stack where the credentials are stored:
Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)