STS - PrivEsc

Abusable AWS STS permissions that can lead to compromise or privilege escalation

sts:GetFederationToken

Returns a set of temporary security credentials (consisting of an access key ID, a secret access key, and a security token) for a federated user
The tool aws_consoler can generate a console login using this permission

aws_consoler

2024-03-09 14:46:03,754 [aws_consoler.logic] WARNING: Creds still permanent, creating federated session.
https://signin.aws.amazon.com/federation?Action=login&Issuer=consoler.local&Destina
[snip]

PreviousSecrets Manager - PrivEsc NextAWS General Info

Last updated 12 hours ago