HackTricks CloudAWS - API Gateway Persistence
Reading time: 2 minutes
tip
Learn & practice AWS Hacking:
HackTricks Training AWS Red Team Expert (ARTE)
Learn & practice GCP Hacking: 
HackTricks Training GCP Red Team Expert (GRTE)
Support HackTricks
- Check the subscription plans!
- Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
- Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.
API Gateway
For more information go to:
Resource Policy
Modify the resource policy of the API gateway(s) to grant yourself access to them
Modify Lambda Authorizers
Modify the code of lambda authorizers to grant yourself access to all the endpoints.
Or just remove the use of the authorizer.
IAM Permissions
If a resource is using IAM authorizer you could give yourself access to it modifying IAM permissions.
Or just remove the use of the authorizer.
API Keys
If API keys are used, you could leak them to maintain persistence or even create new ones.
Or just remove the use of API keys.
tip
Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
Support HackTricks
- Check the subscription plans!
- Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
- Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.