Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enhance iam__enum_permissions w/ unconfirmed and counts #421

Merged
merged 6 commits into from
May 24, 2024
Merged

Enhance iam__enum_permissions w/ unconfirmed and counts #421

merged 6 commits into from
May 24, 2024

Conversation

h00die
Copy link
Contributor

@h00die h00die commented May 20, 2024

This PR modifies iam__enum_permissions to display unconfirmed permissions, and counts of each.

Pre

To start, we have a new user and key entered in to the db.
image
When running iam__enum_permissions for this (limited) user, we get back the following output.
image
When looking at this output, it looks like the module failed. We have a FAILURE, a FAILURE, and while it says 'confirmed permissions for ...', nothing is listed like a user would expect, so I assume no permissions were found BUT the query didn't fail. We move on down to the summary, and we see 0 and 0. So we must not have been able to enumerate.
However, we run a whoami and we see we did get permissions:
image

The problem is that these are unconfirmed permissions. However, they were found so the user should be notified of something.

Post

We now keep track of how many unconfirmed items were present, and a count of the actual permissions. This allows us to give the user better output so they know data was found, which matches what they'll see in whoami.

image

h00die added 2 commits May 20, 2024 12:01
@h00die
Update iam__enum_permissions to show unconfirmed
53e69e9 
Update iam__enum_permissions to show when unconfirmed permissions have been observed, and give counts on all permissions .
@h00die
Add counts to iam__enum_permissions
e25d071 
Add counts of how many permissions were found
@h00die h00die marked this pull request as draft May 20, 2024 16:57
@h00die h00die marked this pull request as ready for review May 20, 2024 17:05
@DaveYesland DaveYesland merged commit cd47cf4 into RhinoSecurityLabs:master May 24, 2024
3 checks passed
@h00die h00die deleted the enum_permissions branch May 24, 2024 16:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@DaveYesland DaveYesland DaveYesland approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@h00die @DaveYesland