Skip to content

Commit 0172f07

Browse files
carlospolopcarlospolop
authored
Merge pull request #270 from thug-gamer/patch-1
fix saml_forge.py script; fix typo
2 parents 31812d3 + 5abaa41 commit 0172f07

File tree

1 file changed

+3
-3
lines changed
  • src/pentesting-cloud/aws-security/aws-privilege-escalation/aws-iam-privesc

1 file changed

+3
-3
lines changed

src/pentesting-cloud/aws-security/aws-privilege-escalation/aws-iam-privesc/README.md

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -50,7 +50,7 @@ aws iam create-access-key --user-name <target_user>
5050
Note that a user can only have 2 access keys created, so if a user already has 2 access keys you will need the permission `iam:DeleteAccessKey` to detele one of them to be able to create a new one:
5151

5252
```bash
53-
aws iam delete-access-key --uaccess-key-id <key_id>
53+
aws iam delete-access-key --access-key-id <key_id>
5454
```
5555

5656
### **`iam:CreateVirtualMFADevice` + `iam:EnableMFADevice`**
@@ -437,7 +437,7 @@ def make_signed_saml_response(role_arn: str, principal_arn: str, key_pem: str, c
437437
response.set("Destination", "https://signin.aws.amazon.com/saml")
438438

439439
issuer = etree.SubElement(response, etree.QName(ns["saml2"], "Issuer"))
440-
issuer.text = "https://attacker-idp.attacker.invalid/idp"
440+
issuer.text = "https://attacker-idp.invalid/idp"
441441

442442
status = etree.SubElement(response, etree.QName(ns["saml2p"], "Status"))
443443
status_code = etree.SubElement(status, etree.QName(ns["saml2p"], "StatusCode"))
@@ -449,7 +449,7 @@ def make_signed_saml_response(role_arn: str, principal_arn: str, key_pem: str, c
449449
assertion.set("IssueInstant", issue_instant.isoformat())
450450

451451
a_issuer = etree.SubElement(assertion, etree.QName(ns["saml2"], "Issuer"))
452-
a_issuer.text = "https://attacker-idp.attacker.invalid/idp"
452+
a_issuer.text = "https://attacker-idp.invalid/idp"
453453

454454
subject = etree.SubElement(assertion, etree.QName(ns["saml2"], "Subject"))
455455
name_id = etree.SubElement(subject, etree.QName(ns["saml2"], "NameID"))

0 commit comments

Comments
 (0)