terraform-aws-ebs-snapshot-publicly-exposed
★ 2
updated 5y ago
⑂ fork
Offensive Terraform module which copies publicly exposed EBS snapshot to us-east-1 region in attacker's AWS account and creates EBS volume from the copied EBS snapshot. After that, the module attaches and mounts the EBS volume to an EC2 instance. Finally, attacker can ssh into an EC2 instance and inspect a mounted volume "/usr/src/hack".
No plain-English explanation yet — one is being written right now. Check back in a minute.