Central file to kick everything off about weirdaal HOT 8 CLOSED

sent you a message off GH

from weirdaal.

Only two months later and I'm just now getting to item #2. 🤦‍♂️ I stink.

from weirdaal.

@carnal0wnage can you tell me how a user can set the aws creds using the ENV setup by @cmc?

TIA 🙏

from weirdaal.

Awesome. For some reason I thought that you had to place it in a file within that ENV folder. Anyways, much appreciated 💥

from weirdaal.

I am going to submit a PR to close this out. The Q&A and other bits aren't fully fleshed out but at least its a start and gets this into the main project.

from weirdaal.

Notes from lunch:

• Logging results into json filetypes (recon-all, for instance)
• We've got fairly static permission checking at this point. As of right now, you see the permissions we interrogate for. However, we could definitely add a "you've got IAM read perms, dump all perms for our key and everyone else?"
  • Root IAM check is either - you are root or you are IAM. Need to show finer grained perms.
• Decision tree can't just be "you've got EC2". Its got to be able to handle "you only have 1 ec2 permission and it doesn't do anything" OR "that 1 permission allows you to do something really cool"
• Region should be an option

from weirdaal.

@cktricky i think this is essentially done or anything outstanding is covered in another issues. Close unless you feel differently

from weirdaal.

i think this is closed, the suggester script is in another issue

from weirdaal.