AWS - Elastic Beanstalk Post Exploitation

Reading time: 4 minutes

tip

Jifunze na fanya mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na fanya mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE) Jifunze na fanya mazoezi ya Azure Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Support HackTricks

Elastic Beanstalk

For more information:

AWS - Elastic Beanstalk Enum

elasticbeanstalk:DeleteApplicationVersion

note

TODO: Jaribu kama ruhusa zaidi zinahitajika kwa hili

Mshambuliaji mwenye ruhusa elasticbeanstalk:DeleteApplicationVersion anaweza kufuta toleo la programu lililopo. Kitendo hiki kinaweza kuingilia mchakato wa deployment wa programu au kusababisha upotevu wa matoleo maalum ya programu ikiwa hayatahifadhiwa.

bash
aws elasticbeanstalk delete-application-version --application-name my-app --version-label my-version

Potential Impact: Kuvuruga utoaji wa programu na uwezekano wa kupoteza matoleo ya programu.

elasticbeanstalk:TerminateEnvironment

note

TODO: Thibitisha kama ruhusa zaidi zinahitajika kwa hili

Mshambuliaji mwenye ruhusa elasticbeanstalk:TerminateEnvironment anaweza kuondoa mazingira ya Elastic Beanstalk yaliyopo, kusababisha muda wa kutofanya kazi kwa programu na uwezekano wa kupoteza data ikiwa mazingira hayajasanidiwa kwa chelezo.

bash
aws elasticbeanstalk terminate-environment --environment-name my-existing-env

Athari Inayoweza Kutokea: Kusimamishwa kwa programu, uwezekano wa upotevu wa data, na kuvurugika kwa huduma.

elasticbeanstalk:DeleteApplication

note

TODO: Angalia kama ruhusa zaidi zinahitajika kwa hili

Mshambuliaji mwenye ruhusa elasticbeanstalk:DeleteApplication anaweza kufuta programu nzima ya Elastic Beanstalk, ikiwa ni pamoja na matoleo yake yote na mazingira yake. Kitendo hiki kinaweza kusababisha upotevu mkubwa wa rasilimali na usanidi za programu ikiwa hazijahifadhiwa.

bash
aws elasticbeanstalk delete-application --application-name my-app --terminate-env-by-force

Potential Impact: Kupoteza rasilimali za programu, mipangilio, mazingira, na matoleo ya programu, jambo linalosababisha kuvurugika kwa huduma na uwezekano wa kupoteza data.

elasticbeanstalk:SwapEnvironmentCNAMEs

note

TODO: Jaribu kama ruhusa zaidi zinahitajika kwa hili

Mshambuliaji mwenye ruhusa ya elasticbeanstalk:SwapEnvironmentCNAMEs anaweza kubadilisha rekodi za CNAME za mazingira mawili ya Elastic Beanstalk, jambo ambalo linaweza kusababisha toleo lisilo sahihi la programu kutumika kwa watumiaji au kusababisha tabia zisizokusudiwa.

bash
aws elasticbeanstalk swap-environment-cnames --source-environment-name my-env-1 --destination-environment-name my-env-2

Potential Impact: Kutoa toleo lisilo sahihi la programu kwa watumiaji au kusababisha tabia isiyokusudiwa kwenye programu kutokana na kubadilishwa kwa mazingira.

elasticbeanstalk:AddTags, elasticbeanstalk:RemoveTags

note

TODO: Jaribu kama ruhusa zaidi zinahitajika kwa hili

Mshambuliaji mwenye ruhusa za elasticbeanstalk:AddTags na elasticbeanstalk:RemoveTags anaweza add or remove tags on Elastic Beanstalk resources. Kitendo hiki kinaweza kusababisha ugawaji wa rasilimali usio sahihi, malipo isiyo sahihi, au usimamizi wa rasilimali usio sahihi.

bash
aws elasticbeanstalk add-tags --resource-arn arn:aws:elasticbeanstalk:us-west-2:123456789012:environment/my-app/my-env --tags Key=MaliciousTag,Value=1

aws elasticbeanstalk remove-tags --resource-arn arn:aws:elasticbeanstalk:us-west-2:123456789012:environment/my-app/my-env --tag-keys MaliciousTag

Athari Inayoweza Kutokea: Ugawaji wa rasilimali usio sahihi, malipo, au usimamizi wa rasilimali kutokana na kuongezwa au kuondolewa kwa tags.

tip

Jifunze na fanya mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na fanya mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE) Jifunze na fanya mazoezi ya Azure Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Support HackTricks