Reference Core Concepts iam:PassRole: Lets you pass an IAM role to a service (e.g., EC2, Lambda). iam:Create, iam:Put, iam:UpdateAssumeRolePolicy: Can lead to full compromise. Abusable Serv...

Reference AWS-CLI-EC2 1. List EC2 Instances Shows instance IDs, public IPs, AMIs, key names, IAM roles, etc. aws ec2 describe-instances --region [region] Use JMESPath filters for cleaner outp...

Reference AWS-CLI-Lambda 1. List All Lambda Functions Shows names, runtimes, ARNs, and last modified dates. aws lambda list-functions --region [region] 2. Get Detailed Info on a Function a. ...

Reference AWS-CLI-S3 S3 Bucket Enumerating Cheat Sheet 1. List Buckets in the Authenticated Account aws s3 ls 2. Check if a Bucket Exists (No Auth) aws s3 ls s3://[bucket-name] --no-sign-req...

Reference AWS-CLI-IAM Configure AWS Access & Secret Key # Create profile. aws configure --profile [name] # Check whoami. aws sts get-caller-identity --profile [name] List IAM Uses aws ...