View difference between Paste ID: <a href="/9BWmeeqg">9BWmeeqg</a> and <a href="/mJjt1BDW">mJjt1BDW</a>

Login to this page:
1		Login to this page:
2		https://786199696183.signin.aws.amazon.com/console
3
4
5		Use one of these usernames:
6		---------------------------
7		hca_student001
8		hca_student002
9		hca_student003
10	-	- Create an account
10	+	hca_student004
11	-	- Enter valid credit card (expect today and tomorrow to be FREE, but a valid credit card is required)
11	+	hca_student005
12		hca_student006
13		hca_student007
14		hca_student008
15		hca_student009
16		hca_student010
17		hca_student011
18		hca_student012
19		hca_student013
20		hca_student014
21		hca_student015
22		hca_student016
23	-	Task 1: Spin up a Linux instance
23	+	hca_student017
24	-	- SSH setup with putty
24	+	hca_student018
25	-	- delete the instance
25	+	hca_student019
26		hca_student020
27	-	Task 2: Spin up a Windows instance
27	+
28	-	- delete the instance
28	+
29
30
31		#####################################
32	-	https://us-west-1.console.aws.amazon.com/elasticbeanstalk/home?region=us-west-1#/gettingStarted
32	+
33		#####################################
34	-	- Step 1: You can use this application:
34	+
35	-	https://infosecaddicts-files.s3.amazonaws.com/AWS-Course/0-aws-first-nodejs-app.zip
35	+
36	-	- Step 2
36	+
37	-	- Step 3
37	+
38	-	- Step 4
38	+
39	-	- Step 5
39	+
40	-	- Step 6
40	+	- Create an account
41	-	** about 6 min **
41	+	- Enter valid credit card (expect today and tomorrow to be FREE, but a valid credit card is required)
42
43
44
45	-	-- says degraded --
45	+
46		https://aws.amazon.com/free/
47	-	- Click "Configuration", then "Software/modify"
47	+
48	-	- In the "Node command" field type: npm start, at the bottom of the screen click "Apply"
48	+
49	-	** about 2 min **
49	+
50		-- Let's spin up an instance in EC2 --
51	-	Reference:
51	+
52	-	https://javascript.tutorialhorizon.com/2015/08/11/what-does-npm-start-do-in-nodejs/
52	+
53		Task 1: Spin up a Linux instance
54		- SSH setup with putty
55		- delete the instance
56
57		Task 2: Spin up a Windows instance
58		- delete the instance
59
60
61	-	- Step 1: Delete the app
61	+
62	-	- Step 2
62	+	https://us-west-1.console.aws.amazon.com/elasticbeanstalk/home?region=us-west-1#/gettingStarted
63
64		- Step 1: You can use this application:
65		https://infosecaddicts-files.s3.amazonaws.com/AWS-Course/0-aws-first-nodejs-app.zip
66		- Step 2
67		- Step 3
68		- Step 4
69	-	- Step 1: Create a group
69	+	- Step 5
70	-	- Step 2: Create a user
70	+	- Step 6
71	-	- Step 3: Enable MFA
71	+	** about 6 min **
72	-	- Step 4: Apply IAM password policy
72	+
73	-	- Step 5: Apply a policy
73	+
74	-	- Step 6: Apply a role
74	+
75		-- says degraded --
76
77		- Click "Configuration", then "Software/modify"
78		- In the "Node command" field type: npm start, at the bottom of the screen click "Apply"
79		** about 2 min **
80
81		Reference:
82		https://javascript.tutorialhorizon.com/2015/08/11/what-does-npm-start-do-in-nodejs/
83
84
85
86		--- Look in EC2 ---
87		https://us-west-1.console.aws.amazon.com/ec2/v2/home?region=us-west-1#Instances:sort=instanceId
88
89		--- Back to Beanstalk ---
90	-	Event = event data, request data, basically a trigger
90	+
91	-	Context = Some additional info about what's going on and what to do
91	+	- Step 1: Delete the app
92	-	Callback = let's lambda know we are done (error, success)
92	+	- Step 2
93
94
95		#################
96	-	# Do something
96	+
97	-	print('received create event{}'.format(event))
97	+
98	-	return ''
98	+
99		- Step 1: Create a group
100		- Step 2: Create a user
101		- Step 3: Enable MFA
102		- Step 4: Apply IAM password policy
103		- Step 5: Apply a policy
104		- Step 6: Apply a role
105
106
107		##################################################
108		# Try to install something a little more complex #
109		##################################################
110		Deploy Wordpress using the following tutorial:
111		https://www.essycode.com/posts/wordpress-and-elastic-beanstalk/
112
113
114
115		########################
116		# AWS Lambda functions #
117		########################
118		--- Lambdas take 3 Arguments ---
119
120		Event = event data, request data, basically a trigger
121		Context = Some additional info about what's going on and what to do
122		Callback = let's lambda know we are done (error, success)
123
124
125		def lambda_handler(event, context):
126		# Do something
127		print('received create event{}'.format(event))
128		return ''
129
130
131
132
133		#################
134		# Setup AWS CLI #
135		#################
136
137
138		--- AWS CLI in Windows ---
139		Reference: https://docs.aws.amazon.com/cli/latest/userguide/install-windows.html#install-msi-on-windows
140
141		1. Download/install the aws cli msi file
142		https://s3.amazonaws.com/aws-cli/AWSCLI64PY3.msi
143
144		-------------Type this--------------------
145		C:\Users\SecureNinja>where aws
146		C:\Program Files\Amazon\AWSCLI\bin\aws.exe
147
148		C:\Users\SecureNinja>aws --version
149		aws-cli/1.16.139 Python/3.6.0 Windows/7 botocore/1.12.129
150		------------------------------------------
151
152
153
154		2. Install Python3 and awscli
155		-------------Type this--------------------
156		C:\Users\SecureNinja>python --version
157		Python 3.7.3
158
159		C:\Users\SecureNinja>pip3 --version
160		pip 19.0.3 from c:\users\secureninja\appdata\local\programs\python\python37\lib\site-packages\pip (python 3.7)
161
162		C:\Users\SecureNinja>pip3 install awscli
163		------------------------------------------
164
165
166
167		3. Configure awscli
168		-------------Type this--------------------
169		C:\Users\SecureNinja>aws configure
170		AWS Access Key ID [None]: AKIAJWN4LNF7********
171		AWS Secret Access Key [None]: fdbgAYf5SnmZ11YndhVQwRysljZCCyNH********
172		Default region name [786199696183]: us-east-1
173		Default output format [None]: json
174		C:\Users\SecureNinja>aws s3 ls
175		2019-04-04 07:17:15 virtualmachines05
176
177		References:
178		https://cloudacademy.com/blog/aws-cli-10-useful-commands/
179
180
181
182		#######################
183		# Pentesting From AWS #
184		#######################
185		Deploy Kali Linux using the following tutorial:
186		https://www.alienvault.com/blogs/security-essentials/configuring-kali-linux-on-amazon-aws-cloud-for-free
187
188		root@kali:/home/ec2-user# history
189		sudo /bin/bash
190		apt-get update
191		apt-get install kali-linux-top10
192		apt-get install -y xfce4 xfce4-goodies tightvncserver gnome-core kali-defaults kali-root-login desktop-base
193		tightvncserver :1
194		nmap localhost -p 5900-5901
195
196
197		#################################
198		# Building a pentest lab in AWS #
199		#################################
200		Here is some code to take a look at (it's old, but should give you an idea of where to start)
201		https://github.com/averagesecurityguy/AWSlab
202
203		Although this is designed for OpenStack instead of AWS it should give you some ideas of what to do in your lab.
204		https://github.com/Sliim/pentest-lab
205
206
207	-	###########
207	+
208	-	# Task 1: #
208	+
209	-	###########
209	+
210		##################
211	-	#######################
211	+
212	-	# 1) Deploy cloudgoat #
212	+
213	-	#######################
213	+
214
215	-	---step 1: create linux instance---
215	+
216	-	Ubuntu Server 18.04 LTS (HVM), SSD Volume Type - ami-0fc20dd1da406780b (64-bit x86) / ami-0959e8feedaf156bf (64-bit Arm)
216	+
217	-	(https://us-east-2.console.aws.amazon.com/ec2/v2/home?region=us-east-2#LaunchInstanceWizard:)
217	+
218		############################
219	-	---step 2: login server via ssh---
219	+
220	-	ip addr: 18.189.31.144
220	+
221	-	pem = aws-security-train.pem
221	+
222	-	username= ubuntu
222	+
223		https://medium.com/@rzepsky/playing-with-cloudgoat-part-3-using-aws-lambda-for-privilege-escalation-and-exploring-a-lightsail-4a48688335fa
224	-	---step 3: initialize---
224	+
225	-	-------------Type this--------------------
225	+
226	-	sudo su
226	+
227	-	apt-get update
227	+
228	-
228	+
229	-	- install unzip
229	+
230	-	-------------Type this--------------------
230	+	##################################