PMapper icon indicating copy to clipboard operation
PMapper copied to clipboard

Published 20 hours ago verified publisher icon nccgroup

New Edges: AWS Glue and DataPipeline

Open ncc-erik-steringer opened this issue 3 years ago • 0 comments

Pulling in some lessons learned from the "iam-vulnerable" project: https://github.com/BishopFox/iam-vulnerable .

TODO:

  1. Apply the following Terraform files and verify the noted permission combinations lead to Edges.
    1. https://github.com/BishopFox/iam-vulnerable/blob/main/modules/free-resources/privesc-paths/privesc18-PassExistingRoleToNewGlueDevEndpoint.tf
    2. https://github.com/BishopFox/iam-vulnerable/blob/main/modules/free-resources/privesc-paths/privesc19-UpdateExistingGlueDevEndpoint.tf
    3. https://github.com/BishopFox/iam-vulnerable/blob/main/modules/free-resources/privesc-paths/privesc21-PassExistingRoleToNewDataPipeline.tf
  2. Create a new edge checker object for Glue and for DataPipeline, maintaining with/without connectivity separation as in LambdaEdgeChecker when appropriate.

ncc-erik-steringer avatar Sep 13 '21 21:09 ncc-erik-steringer