AWS - SNS Unauthenticated Enum

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

SNS

For more information about SNS check:

AWS - SNS Enum

Open to All

When you configure a SNS topic from the web console it's possible to indicate that Everyone can publish and subscribe to the topic:

So if you find the ARN of topics inside the account (or brute forcing potential names for topics) you can check if you can publish or subscribe to them.

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

PreviousAWS - SQS Unauthenticated Enum NextAWS - S3 Unauthenticated Enum

Last updated 8 days ago