cred_scanner
0 (0)
A tool for finding AWS credentials in files, optimized for Jenkins integration.
An attacker with the iam:CreatePolicyVersion permission can create a new version of an IAM policy that they have access to. This allows them to define their own custom permissions. When creating a new policy version, it needs to be set as the default version to take effect, which you would think would require the iam:SetDefaultPolicyVersion permission, but when creating a new policy version, it is possible to include a flag (--set-as-default) that will automatically create it as the new default version. That flag does not require the iam:SetDefaultPolicyVersion permission to use. This privilege escalation method could allow a user to gain full administrator access of the AWS account.
A tool for finding AWS credentials in files, optimized for Jenkins integration.
CloudTracker helps identify over-privileged IAM users and roles by analyzing CloudTrail logs.
A PHP OAuth 2.0 authorization server implementation with support for various grants and RFCs.
DumpsterDiver is a tool for analyzing big volumes of data to find hardcoded secrets like keys and passwords.
A library for forward compatibility with PHP password functions.
Certbot is a free tool for automatically enabling HTTPS on websites using Let's Encrypt certificates.