aws-penetration-testing

Provide comprehensive techniques for penetration testing AWS cloud environments. Covers IAM enumeration, privilege escalation, SSRF to metadata endpoint, S3 bucket exploitation, Lambda code extraction, and persistence techniques for red team operations. Identify the compromised identity and permissions: Exploit SSRF to access metadata endpoint (IMDSv1): For IMDSv2 (token required): Fargate Container Credentials: These permissions are equivalent to administrator: Systems Manager allows command execution on EC2 instances: Convert CLI credentials to console access: Note: Kali/Parrot/Pentoo Linux triggers GuardDuty alerts based on user-agent. Use Pacu which modifies the user-agent. Must: Must Not: Should: For advanced techniques including Lambda/API Gateway exploitation, Secrets Manager & KMS, Container security (ECS/EKS/ECR), RDS/DynamoDB exploitation, VPC lateral movement, and security checklists, see references/advanced-aws-pentesting.md . This skill is applicable to execute the workflow or actions described in the overview. - AWS CLI configured with credentials - Valid AWS credentials (even low-privilege) - Understanding of AWS IAM model - Python 3, boto3 library - Tools: Pacu, Prowler, ScoutSuite, SkyArk - IAM privilege escalation paths - Extracted credentials and secrets - Compromised EC2/Lambda/S3 resources - Persistence mechanisms - Security audit findings - Obtain written...