Hacking Tools

AWeSomeUserFinder : Harnessing AWS IAM For Username Enumeration And Password Security

AWS IAM Username Enumerator and Password Spraying Tool in Python3

In order to use the tool with the UpdateAssumeRolePolicy method, the IAM user account utilized must have the following permissions attached:

  • “iam:GetRole”
  • “iam:CreatePolicy”
  • “iam:UpdateAssumeRolePolicy”
  • “iam:CreateRole”
  • “iam:AttachRolePolicy”

An example policy is included in the files named “example_assume_role_policy.json” in the example_policies directory.

Additionally, an AWS access key and AWS secret key are required. See this link for information on obtaining.

Finally, a role is needed with an attached policy granting “UpdateAssumeRolePolicy,” which also has a TrustedEntity Deny all rule for AssumeRole permissions.

This can be somewhat convoluted, so there is an additional script included with the tool called, “updateassumerolepolicygenerator.py.” Using an access key and secret key, along with the required permissions noted above, the correct policy and role will be generated automatically and be usable until it is manually removed.

Both the new policy and role will be named “user_enumeration_policy.”

S3 Bucket Method

In order to use the tool with the S3 bucket method, you will need to create a new, general-purpose S3 bucket.

Set “Block All Public Access” to the bucket. Next, a new policy needs to be added to the AWS account and attached to the IAM user of choice. The policy must have the following permissions attached to the user:

  • “s3:PutBucketPolicy”
  • “s3:GetBucketPolicy”
  • ARN referenced to the S3 bucket created earlier.

An example policy is included in the files named “example_s3_policy” in the example_policies directory.

For more information click here.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Recent Posts

Pystinger : Bypass Firewall For Traffic Forwarding Using Webshell

Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…

1 week ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

1 week ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

1 week ago

How to Bash Append to File: A Simple Guide for Beginners

If you are working with Linux or writing bash scripts, one of the most common…

1 week ago

Mastering the Bash Case Statement with Simple Examples

What is a bash case statement? A bash case statement is a way to control…

1 week ago

How to Check if a File Exists in Bash – Simply Explained

Why Do We Check Files in Bash? When writing a Bash script, you often work…

2 weeks ago