Merge branch 'master' of github.com:HackTricks-wiki/hacktricks-cloud

carlospolop · carlospolop · commit 7c44e759a9f8 · 2025-05-09T14:41:10.000+02:00
diff --git a/searchindex.js b/searchindex.js
diff --git a/src/pentesting-cloud/aws-security/aws-privilege-escalation/aws-s3-privesc.md b/src/pentesting-cloud/aws-security/aws-privilege-escalation/aws-s3-privesc.md
@@ -62,7 +62,7 @@ So, if you have the permissions listed over these files, there is an attack vect
 Follow the description in the *Abusing Terraform State Files* section of the *Terraform Security* page for directly usable exploit code:
 
 {{#ref}}
-pentesting-ci-cd/terraform-security.md#abusing-terraform-state-files
+../../../pentesting-ci-cd/terraform-security.md#abusing-terraform-state-files
 {{#endref}}
 
 ### `s3:PutBucketPolicy`
diff --git a/src/pentesting-cloud/azure-security/az-privilege-escalation/az-automation-accounts-privesc.md b/src/pentesting-cloud/azure-security/az-privilege-escalation/az-automation-accounts-privesc.md
@@ -156,26 +156,13 @@ az rest --method PUT \
 
 With the permission **`Microsoft.Automation/automationAccounts/webhooks/write`** it's possible to create a new Webhook for a Runbook inside an Automation Account using the following command.
 
-Note that you will need to **indicate webhook URI** with the token to use.
-
 ```bash
-az rest --method PUT \
---url "https://management.azure.com/subscriptions/<subscription-id>/resourceGroups/<res-group>/providers/Microsoft.Automation/automationAccounts/<automantion-account-name>/webhooks/<webhook-name>?api-version=2018-06-30" \
---body '{
-  "name": "<webhook-name>",
-  "properties": {
-    "isEnabled": true,
-    "expiryTime": "2026-01-09T20:03:30.291Z",
-    "parameters": {},
-    "runOn": null,
-    "runbook": {
-      "name": "<runbook-name>"
-    },
-    "uri": "https://f931b47b-18c8-45a2-9d6d-0211545d8c02.webhook.eus.azure-automation.net/webhooks?token=Ts5WmbKk0zcuA8PEUD4pr%2f6SM0NWydiCDqCqS1IdzIU%3d"
-  }
-}'
+New-AzAutomationWebHook -Name <webhook-name> -ResourceGroupName <res-group> -AutomationAccountName <automation-account-name> -RunbookName <runbook-name> -IsEnabled $true
+```
+
+This command should return a webhook URI which is only displayed on creation. Then, to call the runbook using the webhook URI
 
-# Then, to call the runbook using the webhook
+```bash
 curl -X POST "https://f931b47b-18c8-45a2-9d6d-0211545d8c02.webhook.eus.azure-automation.net/webhooks?token=Ts5WmbKk0zcuA8PEUD4pr%2f6SM0NWydiCDqCqS1IdzIU%3d" \
   -H "Content-Length: 0"
 ```
