Hacking-the-Cloud
diff --git a/‎content/aws/post_exploitation/get_iam_creds_from_console_session.md
Lines changed: 20 additions & 0 deletions b/‎content/aws/post_exploitation/get_iam_creds_from_console_session.md
Lines changed: 20 additions & 0 deletions
diff --git a/‎content/images/aws/post_exploitation/get_iam_creds_from_console_session/poc_boto3_creds_retrieval.png
96.5 KB b/‎content/images/aws/post_exploitation/get_iam_creds_from_console_session/poc_boto3_creds_retrieval.png
96.5 KB
@@ -36,3 +36,23 @@ Alternatively, you can run the following command, which returns credentials with
 ```
 [user@cloudshell]$ aws configure export-credentials --format env
 ```
+
+## Using boto3 to Retrieve Credentials
+
+Alternatively, you can use Python's boto3 library directly within CloudShell to programmatically retrieve the credentials. This method can be useful when you need to integrate credential extraction into a Python script or automation workflow.
+
+```python
+import boto3
+
+session = boto3.Session()
+creds = session.get_credentials()
+print({
+    'AccessKey': creds.access_key, 
+    'SecretKey': creds.secret_key, 
+    'Token': creds.token
+})
+```
+
+![POC Credentials Retrieval using boto3](../../images/aws/post_exploitation/get_iam_creds_from_console_session/poc_boto3_creds_retrieval.png)
+
+This approach leverages boto3's automatic credential detection within the CloudShell environment, providing the same temporary credentials that are available through the metadata service endpoint. The credentials obtained this way will have the same TTL limitations as other methods described above.