Offensively, WeirdAAL helps you answer the “what can I do with this AWS key”? We aim to answer that question, in a blackbox way, via recon modules and modules specifically dedicated to attack each of the interesting AWS service offerings while avoiding detection. It also provides multiple functions sorted by AWS service that you can use for both offensive and defensive checks.
https://github.com/carnal0wnage/weirdAAL
Si consigues credentials de por ejemplo https://www.shhgit.com/ que puedes hacer con ellas?