weirdAAL modules/aws/recon.py - brute_cloudhsm

modules/aws/recon.py - brute_cloudhsm_permissions() ignores region

Open laughingman42 opened this issue 2 years ago • 0 comments

Issue: modules/aws/recon.py - brute_cloudhsm_permissions() ignores region env variable and defaults to us-east-1 causing timeout.

Error output:

### Enumerating CloudHSM Permissions ###
Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/urllib3/connection.py", line 169, in _new_conn
    conn = connection.create_connection(
  File "/usr/lib/python3/dist-packages/urllib3/util/connection.py", line 96, in create_connection
    raise err
  File "/usr/lib/python3/dist-packages/urllib3/util/connection.py", line 86, in create_connection
    sock.connect(sa)
socket.timeout: timed out
...
...
urllib3.exceptions.ConnectTimeoutError: (<botocore.awsrequest.AWSHTTPSConnection object at 0x7f936a01be20>, 'Connection to cloudhsm.us-east-1.amazonaws.com timed out. (connect timeout=60)')

Fix: Commenting out call to brute_cloudhsm_permissions() in recon.py allows recon to complete successfully. Seems it should be using brute_cloudhsmv2_permissions() in any case?

Jan 07 '23 16:01 laughingman42

weirdAAL weirdAAL copied to clipboard

modules/aws/recon.py - brute_cloudhsm_permissions() ignores region

weirdAAL
weirdAAL copied to clipboard