{"id":13782614,"url":"https://github.com/Aabyss-Team/awsKeyTools","last_synced_at":"2025-05-11T16:30:36.061Z","repository":{"id":42182462,"uuid":"440905570","full_name":"Aabyss-Team/awsKeyTools","owner":"Aabyss-Team","description":"AWS云平台 AccessKey 泄漏利用工具","archived":false,"fork":false,"pushed_at":"2023-07-18T10:45:10.000Z","size":102,"stargazers_count":339,"open_issues_count":4,"forks_count":44,"subscribers_count":7,"default_branch":"main","last_synced_at":"2024-08-03T18:16:41.220Z","etag":null,"topics":["accesskey","accesskeysecret","aws","cloud-native-security","cloud-security","cloud-security-tools","security","security-tools"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Aabyss-Team.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2021-12-22T15:39:06.000Z","updated_at":"2024-07-25T14:03:51.000Z","dependencies_parsed_at":"2024-01-18T13:07:08.999Z","dependency_job_id":"679acca9-21e5-44b2-ba36-119cbb851234","html_url":"https://github.com/Aabyss-Team/awsKeyTools","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Aabyss-Team%2FawsKeyTools","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Aabyss-Team%2FawsKeyTools/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Aabyss-Team%2FawsKeyTools/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Aabyss-Team%2FawsKeyTools/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Aabyss-Team","download_url":"https://codeload.github.com/Aabyss-Team/awsKeyTools/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225068708,"owners_count":17416119,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["accesskey","accesskeysecret","aws","cloud-native-security","cloud-security","cloud-security-tools","security","security-tools"],"created_at":"2024-08-03T18:01:40.096Z","updated_at":"2024-11-17T17:31:50.280Z","avatar_url":"https://github.com/Aabyss-Team.png","language":"Python","readme":"![awsKeyTools](https://socialify.git.ci/Aabyss-Team/awsKeyTools/image?description=1\u0026font=KoHo\u0026forks=1\u0026issues=1\u0026language=1\u0026name=1\u0026owner=1\u0026pattern=Solid\u0026stargazers=1\u0026theme=Dark)\n\n## 一、安装本工具\n环境： \n```bash\nlinux or mac(windows不支持)\npython version \u003e= 3.7\n```\n\n\n安装： \n```bash\ngit clone https://github.com/Aabyss-Team/awsKeyTools.git\ncd awsKeyTools\npip3 install -r requirements.txt\n```\n\n如果遇到 ` error: command 'x86_64-linux-gnu-gcc' failed with exit status 1` 报错 \n\n解决方案： sudo apt-get install libncurses5-dev\n\n\n\n## 二、使用本工具\n\n第一次使用工具会提示输入ak\n\n```bash\npython3 main.py\n```\n\n输入你的aws_ak即可\n\n1.查看命令帮助\n\n```\n┌──(root💀192)-[~/桌面/awsKeyTools-new_dev (2)]\n└─# python3 main.py\n\n                    __                   __                .__          \n_____ __ _  _______|  | __ ____ ___.__._/  |_  ____   ____ |  |   ______\n\\__  \\ \\/ \\/ /  ___/  |/ // __ \u003c   |  |\\   __\\/  _ \\ /  _ \\|  |  /  ___/\n / __ \\     /\\___ \\|    \u003c\\  ___/\\___  | |  | (  \u003c_\u003e |  \u003c_\u003e )  |__\\___ \\ \n(____  /\\/\\_//____  \u003e__|_ \\___  \u003e ____| |__|  \\____/ \\____/|____/____  \u003e\n     \\/           \\/     \\/   \\/\\/                                   \\/ \n                                                     version : 0.0.1\n                                                     by dbg9 and 无在无不在\n\naws-key-tools \u003e help\nHelp:\n           help - 查看命令帮助\n       userinfo - 获取用户信息\n     privileges - 获取用户权限\n            ec2 - 获取所有地区的EC2（Elastic Computer Cloud）\n           exec - ec2远程命令执行\n        aws-url - 根据当前高权限生成aws控制台访问url\n          reset - 重置aws_ak\n           exit - 退出程序\naws-key-tools \u003e \n```\n\n2.获取ak对应的用户信息\n\n```bash\naws-key-tools \u003e userinfo\n```\n\n![image-20220113104623065](https://note-1301783483.cos.ap-nanjing.myqcloud.com/image/202201131046285.png)\n\n3.查看用户权限 , 默认查看的是用户对应策略的json文件\n\n```\naws-key-tools \u003e privileges \n```\n\n![image-20220113104835778](https://note-1301783483.cos.ap-nanjing.myqcloud.com/image/202201131048925.png)\n\n使用enum参数可以通过枚举查看用户的权限\n\n```bash\naws-key-tools \u003e privileges enum\n```\n\n![image-20220113105804929](https://note-1301783483.cos.ap-nanjing.myqcloud.com/image/202201131058081.png)\n\n4.枚举当前用户可用地区存在的ec2主机\n\n```bash\naws-key-tools \u003e ec2\n```\n\n![image-20220113162308876](https://note-1301783483.cos.ap-nanjing.myqcloud.com/image/202201131623225.png)\n\n5.指定ec2远程命令执行\n\n```\naws-key-tools \u003e exec\n```\n\n如果无法获取平台信息 , 需要用户手动输入\n\n如果当前ec2没有关联实例配置文件 , 会先检测是否存在实例配置文件 , 如果不存在就是创建 , 然后附加到ec2上\n\n![image-20220113120341066](https://note-1301783483.cos.ap-nanjing.myqcloud.com/image/202201131203216.png)\n\n如果创建并添加报错 , 请再次执行exec , 此时不会创建会直接添加\n\n如果存在已创建的示例配置文件直接附加 \n\n![image-20220113112935706](https://note-1301783483.cos.ap-nanjing.myqcloud.com/image/202201131129849.png)\n\n由于实例配置文件的关联需要一定的时间 , 所以约10分钟后 , 才能执行命令\n\n![image-20220113115250069](https://note-1301783483.cos.ap-nanjing.myqcloud.com/image/202201131152191.png)\n\n输入 `exit` 退出当前命令执行\n\n6.生成aws控制台访问连接 , 需要当前用户有一定的权限才可以成功执行\n\n```bash\naws-key-tools \u003e aws-url\n```\n\n![image-20220113113107341](https://note-1301783483.cos.ap-nanjing.myqcloud.com/image/202201131131488.png)\n\n7.重置aws_ak\n\n提示用户重新输入ak\n\n```bash\naws-key-tools \u003e reset\n```\n\n8.退出\n\n```bash\naws-key-tools \u003e exit \n```\n\n## 三、参考文档\n- https://boto3.amazonaws.com/v1/documentation/api/latest/guide/quickstart.html\n- https://github.com/NetSPI/aws_consoler\n- https://github.com/andresriancho/enumerate-iam\n\n## 四、免责声明🧐\n1. 本工具仅面向合法授权的企业安全建设行为，如您需要测试本工具的可用性，请自行搭建靶机环境。\n2. 在使用本工具进行检测时，您应确保该行为符合当地的法律法规，并且已经取得了足够的授权。请勿对非授权目标进行扫描。\n3. 如您在使用本工具的过程中存在任何非法行为，您需自行承担相应后果，我们将不承担任何法律及连带责任。\n\n## 五、感谢各位师傅🙏\n\n## Stargazers\n\n[![Stargazers repo roster for @Aabyss-Team/awsKeyTools](https://reporoster.com/stars/Aabyss-Team/awsKeyTools)](https://github.com/Aabyss-Team/awsKeyTools/stargazers)\n\n\n## Forkers\n\n[![Forkers repo roster for @Aabyss-Team/awsKeyTools](https://reporoster.com/forks/Aabyss-Team/awsKeyTools)](https://github.com/Aabyss-Team/awsKeyTools/network/members)\n\n\n## Star History\n\n[![Star History Chart](https://api.star-history.com/svg?repos=Aabyss-Team/awsKeyTools\u0026type=Date)](https://star-history.com/#Aabyss-Team/awsKeyTools\u0026Date)\n","funding_links":[],"categories":["文章","Python","0x02 工具 :hammer_and_wrench:"],"sub_categories":["1 云服务工具"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FAabyss-Team%2FawsKeyTools","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FAabyss-Team%2FawsKeyTools","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FAabyss-Team%2FawsKeyTools/lists"}