mxm0z / awesome-sec-s3
A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets
☆351Updated 9 months ago
Alternatives and similar repositories for awesome-sec-s3:
Users that are interested in awesome-sec-s3 are comparing it to the libraries listed below
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆245Updated this week
- Golang client for querying SecurityTrails API data☆545Updated last year
- Find AWS S3 buckets and test their permissions.☆379Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆405Updated 2 months ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆265Updated 2 years ago
- Awesome cloud enumerator☆987Updated 2 weeks ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆510Updated last year
- Enumerate the permissions associated with AWS credential set☆1,140Updated last year
- ☆475Updated 10 months ago
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆205Updated last year
- Damn Vulnerable Cloud Application☆191Updated 6 years ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆626Updated last year
- A DNS Bruteforcing Wordlist Generator☆357Updated 2 years ago
- AWS, Azure, Alibaba and Google bucket scanner☆144Updated last year
- Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.☆674Updated last year
- Prototype pollution scanner using headless chrome☆216Updated 2 years ago
- Amazon S3 bucket finder and crawler.☆152Updated 3 years ago
- Quickly generate context-specific wordlists for content discovery from lists of URLs or paths☆220Updated 2 years ago
- Scrapts Scrapts Scrapts☆236Updated 11 months ago
- S3 Account Search☆269Updated 5 months ago
- A Security Tool for Enumerating WebSockets☆343Updated 3 years ago
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆230Updated last year
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…☆171Updated 6 years ago
- Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.☆257Updated 7 months ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆374Updated 3 years ago
- Vulnerability Scan with Nuclei☆250Updated 4 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆917Updated last week
- Automated learning of regexes for DNS discovery☆364Updated 2 years ago
- ☆576Updated last year
- Search exposed EBS volumes for secrets☆297Updated last year