AWS - Directory Services Privesc

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

Directory Services

Kwa maelezo zaidi kuhusu huduma za directory angalia:

AWS - Directory Services / WorkDocs Enum

`ds:ResetUserPassword`

Ruhusa hii inaruhusu kubadilisha nenosiri la mtumiaji yeyote aliyepo katika Active Directory. Kwa default, mtumiaji pekee aliyepo ni Admin.

aws ds reset-user-password --directory-id <id> --user-name Admin --new-password Newpassword123.

AWS Management Console

Inawezekana kuwezesha URL ya ufikiaji wa programu ambayo watumiaji kutoka AD wanaweza kufikia kuingia:

Na kisha kuwapa jukumu la AWS IAM wakati wanapoingia, kwa njia hii mtumiaji/kikundi cha AD kitakuwa na ufikiaji wa AWS management console:

Hakuna njia inayonekana kuwezesha URL ya ufikiaji wa programu, AWS Management Console na kutoa ruhusa

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

PreviousAWS - Datapipeline Privesc NextAWS - DynamoDB Privesc

Last updated 1 month ago