Cheat Sheet: Cloud Security

Name: Cheat Sheet: Cloud Security
Author: CertifiedHacker

1 min leestijd

Cloud Security Cheat Sheet

De meest gebruikte commando's uit Deel III.

AWS

# Configuratie check
aws sts get-caller-identity
aws s3 ls
aws iam list-users
# Metadata
curl http://169.254.169.254/latest/meta-data/iam/security-credentials/

Azure

# Az CLI
az login
az ad user list
az vm list
# ROADtools
roadrecon gather --access-token $TOKEN
roadrecon gui

GCP

gcloud auth list
gcloud projects list
gcloud compute instances list
# Metadata
curl -H "Metadata-Flavor: Google" http://169.254.169.254/computeMetadata/v1/

Containers

# Docker escape check
cat /proc/1/cgroup
ls -la /.dockerenv
# Kubernetes
kubectl get pods --all-namespaces
kubectl auth can-i --list