aloftus23
commented
9 months ago This is not possible in the GovCloud with our current task defintion.
To gain shell access to a Fargate container, you can build it in docker locally and mimic the network boundaries.
💡 Summary
For debugging and pentesting, it would be helpful to have a proccess in place to be able to get into the Fargate containers (shell access).
Currently, we're only able to mimic the containers in Docker and get in that way, but we should take that a step so we can test networking capabilities.
Resources: https://towardsthecloud.com/amazon-ecs-execute-command-access-container
Notes: Would have to temporarily add permissions to the Task definition roles