AWS - Lightsail Enum

Reading time: 3 minutes

tip

Jifunze na fanya mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na fanya mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE) Jifunze na fanya mazoezi ya Azure Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Support HackTricks

AWS - Lightsail

Amazon Lightsail inatoa njia rahisi, nyepesi kwa watumiaji wapya wa wingu kunufaika na huduma za kompyuta za wingu za AWS. Inakuwezesha kupeleka huduma za wavuti za kawaida na za kawaida kwa sekunde kupitia VMs (EC2) na containers.
Ni EC2 ndogo + Route53 + ECS.

Enumeration

bash
# Instances
aws lightsail get-instances #Get all
aws lightsail get-instance-port-states --instance-name <instance_name> #Get open ports

# Databases
aws lightsail get-relational-databases
aws lightsail get-relational-database-snapshots
aws lightsail get-relational-database-parameters

# Disk & snapshots
aws lightsail get-instance-snapshots
aws lightsail get-disk-snapshots
aws lightsail get-disks

# More
aws lightsail get-load-balancers
aws lightsail get-static-ips
aws lightsail get-key-pairs

Changanua Snapshots

Inawezekana kuzalisha instance na relational database snapshots kutoka lightsail. Hivyo unaweza kuangalia hizo kwa njia ile ile unavyoweza kuangalia EC2 snapshots na RDS snapshots.

Metadata

Metadata endpoint inapatikana kutoka lightsail, lakini mashine zinaendesha katika AWS account inayosimamiwa na AWS hivyo huwezi kudhibiti ni ruhusa zipi zinazotolewa. Hata hivyo, ikiwa utapata njia ya kutumia hizo, utakuwa unatumia moja kwa moja AWS.

Privesc

AWS - Lightsail Privesc

Post Exploitation

AWS - Lightsail Post Exploitation

Persistence

AWS - Lightsail Persistence

tip

Jifunze na fanya mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na fanya mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE) Jifunze na fanya mazoezi ya Azure Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Support HackTricks