AWS - SQS Persistence

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

SQS

Kwa maelezo zaidi angalia:

AWS - SQS Enum

Using resource policy

Katika SQS unahitaji kuonyesha kwa sera ya IAM nani ana uf access wa kusoma na kuandika. Inawezekana kuonyesha akaunti za nje, ARN za majukumu, au hata "*". Sera ifuatayo inawapa kila mtu katika AWS uf access wa kila kitu katika foleni inayoitwa MyTestQueue:

{
"Version": "2008-10-17",
"Id": "__default_policy_ID",
"Statement": [
{
"Sid": "__owner_statement",
"Effect": "Allow",
"Principal": {
"AWS": "*"
},
"Action": [
"SQS:*"
],
"Resource": "arn:aws:sqs:us-east-1:123123123123:MyTestQueue"
}
]
}

Unaweza hata kuanzisha Lambda katika akaunti ya washambuliaji kila wakati ujumbe mpya unapoingizwa kwenye foleni (utahitaji kuingiza tena) kwa namna fulani. Kwa hili fuata maelekezo haya: https://docs.aws.amazon.com/lambda/latest/dg/with-sqs-cross-account-example.html

Jifunze & fanya mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Jifunze & fanya mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Angalia mpango wa usajili!
Jiunge na 💬 kikundi cha Discord au kikundi cha telegram au tufuatilie kwenye Twitter 🐦 @hacktricks_live.
Shiriki mbinu za udukuzi kwa kuwasilisha PRs kwa HackTricks na HackTricks Cloud repos za github.

PreviousAWS - Secrets Manager Persistence NextAWS - SSM Perssitence

Last updated 1 month ago