Skip to content

Beginner Friendly red team icon   GCP

Create Custom Tooling to Explore AWS

Let's create a Python script for our AWS security toolbox, that allows us to enumerate and exfiltrate S3 bucket contents.

Overview

Coding is fun, and creating our own tools allows us to better understand what is happening when we run them and of the environment in which we run them. In this lab we'll create a Python script for our AWS security toolbox, that allows us to enumerate and exfiltrate S3 bucket contents.

Scenario

We have some time before our next AWS engagement, so why not create some custom tooling to make our job easier!

Lab prerequisites
  • Familiarity with the command line
  • Basic knowledge of AWS and S3
Learning outcomes
  • Proxy AWS CLI commands through Burp
  • Create and test a Python script to enumerate and download S3 files
Real-world context

When building infrastructure in AWS, running audits and creating incident response playbooks, and assessing the security of AWS environments, there are times when existing tools don't do exactly what we need. For these situations, being able to create your own tools and scripts will help you build, defend and attack more effectively.