Skip to main content
Room Banner
Back to all walkthroughs
Room Icon

AWS IAM Initial Access

Max room.

Gaining Initial Access to AWS IAM Principals.

medium

60 min

297

User profile photo.
User profile photo.

To access material, start machines and answer questions login.

In this room, you will learn about several different vectors for attackers to gain initial access to an environment. Now, it is important to establish at the outset what we mean by "initial access" in , and in other cloud providers. Commonly, "initial access" is associated with compromising a computer system. It is also commonly associated with compromising user credentials.

In the case of , it is this second association that we are going to examine. While there are some peculiarities to systems deployed in that attackers want to be aware of (No Requests? (opens in new tab)), the primary mechanism of access in is the credentials associated with the service. Compromising those credentials, or the systems that contain them, are THE method of accessing services and resources.

Learning Objectives

We are going to take a look at four common techniques for gaining initial access to . Two of those techniques we'll discuss theoretically, and two of those techniques we will perform hands-on. The scenarios we will cover include:

  • Scenario One: Leaked Credentials
  • Scenario Two: for Stacksets
  • Scenario Three: to Instance Profile Credentials
  • Scenario Four: Vulnerable Automation

The learner should have a good grasp of before starting this room. If you need a refresher, please check out the Module before proceeding.

Answer the questions below
What is the primary mechanism of access in AWS?