Nimbus - HTB Machine Writeup

Difficulty: Hard | OS: Linux | Status: Completed

Exploit a reflected SSRF to steal AWS IAM credentials from the instance metadata service, inject a malicious YAML job into SQS for RCE on the worker, then escape to the host via a privileged CodeBuild container and kernel core_pattern hijack.

Tags: SSRF, AWS IAM / Cloud Exploitation, Container Escape

[ LOADING MACHINE DATA... ]

_

0xJerry's Lab

ONLINE

UDYAM-TN-20-0233404

Privacy Policy Terms of Service

|Built in the shadows///