cr0hn / festin
FestIn - Open S3 Bucket Scanner
β230Updated 3 years ago
Related projects β
Alternatives and complementary repositories for festin
- Find cloud assets that no one wants exposed π βοΈβ332Updated 4 years ago
- Weaponizing Live CT logs for automated monitoring ofΒ assetsβ133Updated 3 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.β227Updated this week
- β231Updated 4 months ago
- BurpSuite Extension: A one-stop pen testing checklist and logger toolβ262Updated last year
- S3 Account Searchβ245Updated 3 weeks ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raiderβ138Updated 3 years ago
- Search exposed EBS volumes for secretsβ285Updated last year
- A collection of awesome AWS S3 tools that collects and enumerates exposed S3 bucketsβ304Updated 4 months ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.β133Updated 4 years ago
- AWS, Azure, Alibaba and Google bucket scannerβ120Updated last year
- π° A Python script for AWS S3 bucket enumeration.β139Updated last year
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testinβ¦β181Updated 2 years ago
- Bucky (An automatic S3 bucket discovery tool)β190Updated 2 years ago
- Cross Origin Resource Sharing MisConfiguration Scannerβ168Updated 2 years ago
- Scan DockerHub images that match a keyword to find secrets.β54Updated 3 years ago
- AWS S3 Bucket/Object Finderβ115Updated 3 years ago
- automated web assets enumeration & scanning [DEPRECATED]β285Updated last year
- You can read the writeup on this script hereβ191Updated 3 years ago
- Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used tβ¦β190Updated 7 months ago
- Python library and CLI for the Bug Bounty Recon APIβ219Updated 3 years ago
- Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloβ¦β120Updated 7 months ago
- Prototype pollution scanner using headless chromeβ197Updated 2 years ago
- Unauthenticated enumeration of AWS, Azure, and GCP Principalsβ202Updated 3 months ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.β109Updated 3 years ago
- Tools to assess the DNS security of web applicationsβ125Updated 2 years ago
- A utility to convert your AWS CLI credentials into AWS console access.β218Updated 4 years ago
- Turns any junk text into a usable wordlist for brute-forcing.β217Updated 7 months ago
- A pre-DDoS security assessment toolβ122Updated 3 years ago