AWS RDS Snapshot Publicly Exposed

Offensive Terraform module which creates RDS database from a publicly exposed RDS snapshot in attacker's AWS account. After that, attacker can connect to RDS database and inspect it.

Note: The provider region must be same as publicly exposed RDS snapshot's region.

Usage

provider "aws" {
  region = "us-east-1"
}

module "rds-snapshot-publicly-exposed" {
    source  = "offensive-terraform/rds-snapshot-publicly-exposed/aws"

    rds_snapshot_arn = "arn:aws:rds:region:0000000000:snapshot:name"
    rds_db_password  = "password"
}

output "rds_endpoint" {
  value = module.rds-snapshot-publicly-exposed.rds_endpoint
}

output "rds_port" {
  value = module.rds-snapshot-publicly-exposed.rds_port
}

output "rds_username" {
  value = module.rds-snapshot-publicly-exposed.rds_username
}

Author

Module managed by https://github.com/iganbold

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
.github/workflows		.github/workflows
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
diagram.jpg		diagram.jpg
main.tf		main.tf
outputs.tf		outputs.tf
variables.tf		variables.tf

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

AWS RDS Snapshot Publicly Exposed

Usage

Author

About

Releases 3

Packages

Languages

License

offensive-terraform/terraform-aws-rds-snapshot-publicly-exposed

Folders and files

Latest commit

History

Repository files navigation

AWS RDS Snapshot Publicly Exposed

Usage

Author

About

Topics

Resources

License

Stars

Watchers

Forks

Releases 3

Packages 0

Languages

Packages