Pentesting AWS Practitioner

Intermediate Theory + practical Pass: Passing $249

AWS pentesting — IAM privilege escalation, S3 misconfigs, Lambda abuse, EC2 SSRF.

Official Page

IssuerAltered Security

FormatTheory + practical

DurationSelf-paced

Pass ScorePassing

Overview Syllabus (7) Tools (2) Cheat Sheets (1) Labs (1)

Recommended Tools

AWS CLI Essential

AWS

Official AWS CLI

installpip3 install awscli

usageaws sts get-caller-identity; aws iam list-users

CloudFox Essential

AWS

AWS situational awareness

installgo install github.com/BishopFox/cloudfox@latest

usagecloudfox aws all-checks --profile pentest

enumerate-iam Essential

AWS

IAM permission bruteforcer

installgit clone https://github.com/andresriancho/enumerate-iam

usagepython3 enumerate-iam.py --access-key AKIA... --secret-key ...

Pacu Essential

AWS

AWS exploitation framework

installgit clone https://github.com/RhinoSecurityLabs/pacu

usagepython3 pacu.py; run iam__enum_permissions

PMapper Essential

AWS

IAM privilege escalation path finder

installpip3 install principalmapper

usagepmapper --profile pentest graph create; pmapper query "who can do iam:CreateRole"

S3Scanner Essential

AWS

S3 bucket scanner

installpip3 install s3scanner

usages3scanner scan --buckets-file buckets.txt

WeirdAAL Essential

AWS

AWS attack library

installgit clone https://github.com/carnal0wnage/weirdAAL

usagepython3 weirdAAL.py -m ec2_describe_all -t pentest

ScoutSuite Essential

Multi-Cloud

AWS security audit

installpip3 install scoutsuite

usagescout aws --profile default