AWS - WorkDocs Privesc
Last updated
Last updated
For more info about WorkDocs check:
workdocs:CreateUser
Create a user inside the Directory indicated, then you will have access to both WorkDocs and AD:
workdocs:GetDocument
, (workdocs:
DescribeActivities)
The files might contain sensitive information, read them:
workdocs:AddResourcePermissions
If you don't have access to read something, you can just grant it
workdocs:AddUserToGroup
You can make a user admin by setting it in the group ZOCALO_ADMIN. For that follow the instructions from https://docs.aws.amazon.com/workdocs/latest/adminguide/manage_set_admin.html
Login with that user in workdoc and access the admin panel in /workdocs/index.html#/admin
I didn't find any way to do this from the cli.