Comments (8)
sent you a message off GH
from weirdaal.
Only two months later and I'm just now getting to item #2. 🤦♂️ I stink.
from weirdaal.
@carnal0wnage can you tell me how a user can set the aws creds using the ENV setup by @cmc?
TIA 🙏
from weirdaal.
Awesome. For some reason I thought that you had to place it in a file within that ENV
folder. Anyways, much appreciated 💥
from weirdaal.
I am going to submit a PR to close this out. The Q&A and other bits aren't fully fleshed out but at least its a start and gets this into the main project.
from weirdaal.
Notes from lunch:
- Logging results into
json
filetypes (recon-all, for instance) - We've got fairly static permission checking at this point. As of right now, you see the permissions we interrogate for. However, we could definitely add a "you've got IAM read perms, dump all perms for our key and everyone else?"
- Root IAM check is either - you are root or you are IAM. Need to show finer grained perms.
- Decision tree can't just be "you've got EC2". Its got to be able to handle "you only have 1 ec2 permission and it doesn't do anything" OR "that 1 permission allows you to do something really cool"
- Region should be an option
from weirdaal.
@cktricky i think this is essentially done or anything outstanding is covered in another issues. Close unless you feel differently
from weirdaal.
i think this is closed, the suggester script is in another issue
from weirdaal.
Related Issues (20)
- Ability to add yourself to an SNS topic
- UX Feature Request - List region with error HOT 2
- No Log to Error Messages HOT 7
- error when .env isnt present HOT 1
- list modules doesnt work without a valid aws key HOT 1
- Support for Boto3 Profile HOT 2
- Naming convention
- Perform Credential Check Changes
- startup should check for existence of dbs
- handle connect timeout error better
- S3 modules dont loop through the regions HOT 1
- data.mediastore default region doesnt work HOT 1
- S3 download file failes on files outside root HOT 1
- database function to list services by a user provided key HOT 1
- show targets in the database HOT 1
- see if possible to change useragent for boto3
- dependency deprecation - must use python3.9 HOT 1
- modules/aws/recon.py - brute_cloudhsm_permissions() ignores region
- ImportError: cannot import name 'Iterable' from 'collections' HOT 1
- License? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from weirdaal.