Skip to content

Instantly share code, notes, and snippets.

@0xdabbad00

0xdabbad00/AWSExposedCredentialPolicy_DO_NOT_REMOVE

Created April 10, 2020 18:34
Show Gist options
  • Star 3 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save 0xdabbad00/b1ff2b09a1d04a401fa65ace48bd41e3 to your computer and use it in GitHub Desktop.
Save 0xdabbad00/b1ff2b09a1d04a401fa65ace48bd41e3 to your computer and use it in GitHub Desktop.
Download ZIP
Copy of AWSExposedCredentialPolicy_DO_NOT_REMOVE sent to me by someone
Raw
AWSExposedCredentialPolicy_DO_NOT_REMOVE
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Deny",
"Action": [
"iam:UpdateAccessKey",
"ec2:RequestSpotInstances",
"organizations:InviteAccountToOrganization",
"lightsail:DownloadDefaultKeyPair",
"iam:UpdateUser",
"iam:PutUserPermissionsBoundary",
"lambda:CreateFunction",
"iam:PutGroupPolicy",
"organizations:CreateOrganization",
"lightsail:GetInstanceAccessDetails",
"iam:PutUserPolicy",
"ec2:RunInstances",
"iam:CreateLoginProfile",
"iam:ChangePassword",
"iam:DeleteUserPolicy",
"iam:UpdateAccountPasswordPolicy",
"iam:CreateRole",
"ec2:StartInstances",
"lightsail:Create*",
"lightsail:Delete*",
"iam:CreateUser",
"iam:AttachRolePolicy",
"iam:AttachGroupPolicy",
"lightsail:Update*",
"iam:CreateInstanceProfile",
"iam:AttachUserPolicy",
"iam:CreateAccessKey",
"iam:DetachUserPolicy",
"organizations:CreateAccount",
"lightsail:Start*"
],
"Resource": [
"*"
]
}
]
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment