nuclei-templates
nuclei-templates copied to clipboard
Published
20 hours ago •
projectdiscovery
projectdiscovery
Added templates to identify /.aws/credenitals and /.aws/config
Template / PR Information
- Identify exposed
/.aws/credentialsand/.aws/configfiles for a host. These exposed files can leak access keys for AWS. - References: https://aws.amazon.com/blogs/security/what-to-do-if-you-inadvertently-expose-an-aws-access-key/
Template Validation
I've validated this template locally?
- [x] YES
- [ ] NO
I've validated these templates across my Internet research as well.
Additional Details (leave it blank if not applicable)
Many organizations inadvertently leak their AWS configurations to the Internet. This causes a significant impact through leaked key material and allows attackers to use those keys to authenticate to AWS as that account.
These templates search for the /.aws/credentials and /.aws/config files which are used by the AWS CLI to programmatically interface with AWS.
This PR contains two templates since they are similar.
Additional References:
- Nuclei Template Creation Guideline
- Nuclei Template Matcher Guideline
- Nuclei Template Contribution Guideline
- PD-Community Discord server
