weirdAAL
weirdAAL copied to clipboard
carnal0wnage
WeirdAAL (AWS Attack Library)
right now only a 2 of the functions in EC2 module log to DB. ALL the modules should log results. - [ ] aws_lambda - [ ] ce - [...
https://github.com/bchew/dynamodump
in aws_pwn you can call the metadata url from ec2 if you have creds. that's useful. create function/script to do that see: https://github.com/dagrz/aws_pwn/blob/master/elevation/bouncy_bouncy_cloudy_cloud.py
https://github.com/dagrz/aws_pwn/blob/master/elevation/assume_roles.py useful functions around listing roles and assuming roles for an account
This is so unbelievably dirty that it would be awesome to have a working module to backdoor code and re-upload update_function_code(**kwargs) http://boto3.readthedocs.io/en/latest/reference/services/lambda.html#Lambda.Client.update_function_code total wishlist item though
**Issue:** Cannot import name 'Iterable' from 'collections' (/usr/lib/python3.11/collections/__init__.py) **Fix:** `Iterable` was removed from `collections` in Python 3.10. As a consequence, when "from tabulate import tabulate", Iterable isn't correctly imported, so...
``` Traceback (most recent call last): File "/Users/xy/weirdAAL/weirdAAL.py", line 18, in from tabulate import tabulate File "/Users/xy/weirdAAL/weirdAAL/lib/python3.10/site-packages/tabulate.py", line 7, in from collections import namedtuple, Iterable ImportError: cannot import name 'Iterable'...
The error occurs because the `weirdAAL.py` script attempts to import the Iterable class from the collections module, which does not include this class in Python 3.11. In Python 3.11, the...
**Issue:** modules/aws/recon.py - `brute_cloudhsm_permissions()` ignores region env variable and defaults to us-east-1 causing timeout. **Error output:** ``` ### Enumerating CloudHSM Permissions ### Traceback (most recent call last): File "/usr/lib/python3/dist-packages/urllib3/connection.py", line...
