AWS

An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account’s resources with a rogue AWS account

An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account’s resources with a rogue AWS account – or share the resources with the entire internet
?

continuous-integration Documentation Status Join the chat at https://gitter.im/salesforce/endgame Twitter Downloads

TL;DR: endgame smash --service all to create backdoors across your entire AWS account – by sharing resources either with a rogue IAM user/role or with the entire Internet.

Endgame abuses AWS’s resource permission model to grant rogue users (or the Internet) access to an AWS account’s resources with a single command. It does this through one

 

 

 

To finish reading, please visit source site