Skip to content

Latest commit

 

History

History
64 lines (44 loc) · 3.35 KB

aws-lightsail-enum.md

File metadata and controls

64 lines (44 loc) · 3.35 KB
Raw

AWS - Lightsail Enum

Support HackTricks and get benefits!

AWS - Lightsail

Amazon Lightsail provides an easy, lightweight way for new cloud users to take advantage of AWS’ cloud computing services. It allows you to deploy common and custom web services in seconds via VMs (EC2) and containers.

Enumeration

# Instances
aws lightsail get-instances #Get all
aws lightsail get-instance-port-states --instance-name <instance_name> #Get open ports

# Databases
aws lightsail get-relational-databases
aws lightsail get-relational-database-snapshots
aws lightsail get-relational-database-parameters

# Disk & snapshots
aws lightsail get-instance-snapshots
aws lightsail get-disk-snapshots
aws lightsail get-disks

# More
aws lightsail get-load-balancers
aws lightsail get-static-ips
aws lightsail get-key-pairs

Analyse Snapshots

It's possible to generate instance and relational database snapshots from lightsail. Therefore you can check those the same way you can check EC2 snapshots and RDS snapshots.

Privesc

In the following page you can check how to abuse codebuild permissions to escalate privileges:

{% content-ref url="../aws-privilege-escalation/aws-lightsail-privesc.md" %} aws-lightsail-privesc.md {% endcontent-ref %}

Support HackTricks and get benefits!