aljaz/s3-bucket-scanner
1
0
Fork 0
mirror of https://github.com/aljazceru/s3-bucket-scanner.git synced 2025-12-16 13:54:24 +01:00
Code Issues Packages Projects Releases Wiki Activity
14 Commits 1 Branch 0 Tags
master
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Aljaz Ceru 68ad939039 fixing duplicates in wordlist
2017-10-23 16:59:22 +02:00
.gitignore
first commit
2017-10-21 18:21:54 +02:00
LICENSE
Initial commit
2017-10-21 15:57:20 +02:00
README.md
more readme fixes
2017-10-21 19:39:36 +02:00
requirements.txt
first commit
2017-10-21 18:21:54 +02:00
s3scan.py
Fixed PEP8 issues in s3scan.py
2017-10-21 16:53:33 -07:00
wordlist.txt
fixing duplicates in wordlist
2017-10-23 16:59:22 +02:00

README.md

S3 bucket scanner

Simple public s3 bucket scanner written in python

How it works

This script is a public s3 bucket scanner. It uses wordlist to test for existence of publicly open s3 buckets and lists their contents. Wordlist provided with it is just a PoC wordlist I've gathered from various subdomain enumeration lists.

Scanner supports two different modes:

  • simple wordlist scan where it check if there is a publicly accessible s3 bucket for every word in the wordlist
  • keyword scan where it uses the keyword in combination with the wordlist. Is uses the wordlist in three different combinations: {keyword}-{wordlist},{keyword}_{wordlist} and {keyword}{wordlist}

For example if we use the keyword nsa and the wordlist contains the word "backup" the script will test for:

nsa-backup
nsa_backup
nsabackup

Requirements

The only requirements for this to run is python's requests lib .

pip install -r requirements.txt

License

This project is licensed under the MIT License - see the LICENSE file for details

Description
No description provided
Readme MIT 2.7 MiB
Languages
Python 100%