Amazon Web Services pentesting cheatsheet

Index

sudo apt-get install python3-pip
git clone https://github.com/RhinoSecurityLabs/pacu
cd pacu
sudo bash install.sh

import_keys <profile name>

run iam__detect_honeytokens

run iam__enum_users_roles_policies_groups
run iam__enum_permissions
whoami

run iam__privesc_scan