feat: add cognito-scanner tool for AWS pentest

2024-06-26 00:48:50 +00:00 · 2023-08-08 10:41:54 +02:00 · 2023-08-08 10:41:54 +02:00 · 538a7b024b
commit 538a7b024b
parent d642e97d8d
1 changed files with 11 additions and 0 deletions
--- a/Resources/Cloud
+++ b/Resources/Cloud
@ -185,6 +185,17 @@
    find_admins: Look at IAM policies to identify admin users and roles, or principals with specific privileges
    ```

+* [Cognito Scanner](https://github.com/padok-team/cognito-scanner) - A CLI tool for executing attacks on cognito such as *Unwanted account creation*, *Account Oracle* and *Identity Pool escalation*.
+    ```bash
+    # Installation
+    $ pip install cognito-scanner
+    # Usage
+    $ cognito-scanner --help
+    # Get information about how to use the unwanted account creation script
+    $ cogntio-scanner account-creation --help
+    # For more details go to https://github.com/padok-team/cognito-scanner
+    ```
+
 * [dufflebag](https://labs.bishopfox.com/dufflebag) - Find secrets that are accidentally exposed via Amazon EBS's "public" mode
 * [NetSPI/AWS Consoler](https://github.com/NetSPI/aws_consoler) - Convert AWS Credentials into a console access