AWS - DataPipeline, CodePipeline & CodeCommit Enum
DataPipeline
AWS Data Pipeline is designed to facilitate the access, transformation, and efficient transfer of data at scale. It allows the following operations to be performed:
Access Your Data Where It’s Stored: Data residing in various AWS services can be accessed seamlessly.
Transform and Process at Scale: Large-scale data processing and transformation tasks are handled efficiently.
Efficiently Transfer Results: The processed data can be efficiently transferred to multiple AWS services including:
Amazon S3
Amazon RDS
Amazon DynamoDB
Amazon EMR
In essence, AWS Data Pipeline streamlines the movement and processing of data between different AWS compute and storage services, as well as on-premises data sources, at specified intervals.
Enumeration
Privesc
In the following page you can check how to abuse datapipeline permissions to escalate privileges:
CodePipeline
AWS CodePipeline is a fully managed continuous delivery service that helps you automate your release pipelines for fast and reliable application and infrastructure updates. CodePipeline automates the build, test, and deploy phases of your release process every time there is a code change, based on the release model you define.
Enumeration
Privesc
In the following page you can check how to abuse codepipeline permissions to escalate privileges:
CodeCommit
It is a version control service, which is hosted and fully managed by Amazon, which can be used to privately store data (documents, binary files, source code) and manage them in the cloud.
It eliminates the requirement for the user to know Git and manage their own source control system or worry about scaling up or down their infrastructure. Codecommit supports all the standard functionalities that can be found in Git, which means it works effortlessly with user’s current Git-based tools.
Enumeration
References
Last updated