STS
STS overview and attacks
sts:GetFederationToken
Returns a set of temporary security credentials (consisting of an access key ID, a secret access key, and a security token) for a user.
A Python script leveraging Boto3 called aws_consoler can automatically generate AWS console credentials.
This works even if the user does not have console access configured!
Last updated