Shimit is a Python-based tool that facilitates the execution of the Golden SAML attack. This attack method allows an adversary to forge SAMLResponse objects, which are then used to bypass authentication and gain unauthorized access to applications relying on SAML for single sign-on. By crafting a signed SAMLResponse, attackers can impersonate any user and achieve any desired level of privilege within the target application.
Currently, Shimit specifically supports the AWS Console as a Service Provider, enabling attackers to gain illicit access to AWS environments. The tool’s developers have indicated future plans to expand its compatibility to include other SAML-enabled service providers.