diff --git a/Enumeration/AWS.md b/Enumeration/AWS.md index 7f93f56..921e386 100644 --- a/Enumeration/AWS.md +++ b/Enumeration/AWS.md @@ -4,6 +4,7 @@ * [Regions](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-regions-availability-zones.html#concepts-available-segions) * `--region` + ### Simple Storage Service (S3) * [S3](https://aws.amazon.com/s3/) * Methods of access control are as follows @@ -29,10 +30,12 @@ aws s3 cp s3:///foo_public.xml . --no-sign-request ``` #### ACL + * `Anyone`, just `curl` * `AuthenticatedUsers`, `s3` cli with aws key ## IAM + * Not necessarily used by s3 * Access key ID, starts with `AKIA` + 20 chars * Secret access key @@ -82,3 +85,10 @@ aws secretsmanager list-secrets ws secretsmanager get-secret-value --secret-id --region ``` +## Check Permissions on S3 Bucket + +* Do a `PUT` method to see if the bucket may be writeable to upload a file via +```sh +curl -vvv -X PUT $BUCKET_URL --data "Test of write permissions" +``` +