Add AWS API Gateway IP rotation module#53
Open
incogbyte wants to merge 4 commits intoblacklanternsecurity:trevorspray-v2from
Open
Add AWS API Gateway IP rotation module#53incogbyte wants to merge 4 commits intoblacklanternsecurity:trevorspray-v2from
incogbyte wants to merge 4 commits intoblacklanternsecurity:trevorspray-v2from
Conversation
Implement source IP rotation by routing spray traffic through AWS API Gateway endpoints deployed across multiple regions. Each request goes through a randomly selected gateway, resulting in a different source IP per attempt, which helps bypass rate-limiting and IP-based lockout mechanisms during password spray engagements. Features: - Create/destroy API Gateways automatically across 16 AWS regions - Credential validation via STS before gateway creation - Persistent credential storage in ~/.trevorspray/aws_config.ini (chmod 600) - Interactive credential prompt when no keys are provided - Mutual exclusion with existing proxy modes (--ssh, --subnet, --proxy) - Full cleanup of AWS resources on exit or interrupt New CLI options: --aws Enable IP rotation through AWS API Gateway --aws-regions Limit to specific AWS regions --aws-profile Use named AWS credentials profile --aws-access-key AWS access key ID --aws-secret-key AWS secret access key --aws-clear-creds Delete saved credentials and exit Optional dependency: boto3 (pip install trevorspray[aws])
Add usage examples and CLI reference for the new --aws feature, including credential management, region selection, and cleanup.
|
An FYI, AWS has been banning accounts for using their AWS API Gateway for password sprays. Got mine almost banned for using AWS API Gateways with CredMaster. 
May I suggest using Cloudflare Workers? Something like; knavesec/CredMaster#96 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
~/.trevorspray/aws_config.ini), AWS profiles, and direct CLI keys--ssh,--subnet,--proxy)boto3added as optional dependency (pip install trevorspray[aws])Files changed
trevorspray/lib/aws_gateway.py— New module: manages API Gateway lifecycle (create, proxy, delete)trevorspray/lib/proxy.py— Rewrite request URLs through random gateway before sendingtrevorspray/lib/trevor.py— Initialize and cleanup AWS gateway managertrevorspray/cli.py— New argument group for AWS optionspyproject.toml— boto3 as optional dependencyREADME.md— Documentation and usage examples.gitignore— Ignore venv, pycache, *.pyc