AWS - RDS Unauthenticated Enum
RDS
For more information check:
AWS - Relational Database (RDS) EnumPublic Port
It's possible to give public access to the database from the internet. The attacker will still need to know the username and password, IAM access, or an exploit to enter in the database.
Public RDS Snapshots
AWS allows giving access to anyone to download RDS snapshots. You can list these public RDS snapshots very easily from your own account:
Public URL template
Last updated