mxm0z / awesome-sec-s3
A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets
☆347Updated 8 months ago
Alternatives and similar repositories for awesome-sec-s3:
Users that are interested in awesome-sec-s3 are comparing it to the libraries listed below
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆243Updated this week
- Golang client for querying SecurityTrails API data☆547Updated last year
- Find AWS S3 buckets and test their permissions.☆377Updated last year
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆505Updated last year
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆265Updated 2 years ago
- Awesome cloud enumerator☆976Updated this week
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆405Updated last month
- ☆371Updated 3 years ago
- A DNS Bruteforcing Wordlist Generator☆355Updated 2 years ago
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆718Updated 2 years ago
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆230Updated last year
- A rapid API for the Project Sonar dataset☆643Updated last year
- ☆472Updated 10 months ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆338Updated 4 years ago
- Enumerate the permissions associated with AWS credential set☆1,135Updated last year
- Quickly generate context-specific wordlists for content discovery from lists of URLs or paths☆220Updated 2 years ago
- Vulnerability Scan with Nuclei☆249Updated 3 months ago
- Prototype pollution scanner using headless chrome☆216Updated 2 years ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆913Updated this week
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆205Updated last year
- Automated learning of regexes for DNS discovery☆364Updated 2 years ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆380Updated 5 months ago
- Secret and/or credential patterns used for gf.☆240Updated 2 years ago
- Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.☆674Updated last year
- ☆318Updated last month
- AWS, Azure, Alibaba and Google bucket scanner☆144Updated last year
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…☆198Updated 2 years ago
- Takes a list of URLs and returns their HTTP response codes☆392Updated last year
- Scrapts Scrapts Scrapts☆237Updated 11 months ago
- API Security Project aims to present unique attack & defense methods in API Security field☆282Updated 3 years ago