Security
  • IT Security Knowledge Base
  • Blue team
    • Linux System Hardening
    • Phishing Analysis
    • Snort
    • Yara
  • Capture the Flag
    • OverTheWire
      • Bandit
        • Bandit Level 0
        • Bandit Level 0 → Level 1
        • Bandit Level 1 → Level 2
        • Bandit Level 2 → Level 3
        • Bandit Level 3 → Level 4
        • Bandit Level 4 → Level 5
        • Bandit Level 5 → Level 6
        • Bandit Level 6 → Level 7
        • Bandit Level 7 → Level 8
        • Bandit Level 8 → Level 9
        • Bandit Level 9 → Level 10
        • Bandit Level 10 → Level 11
        • Bandit Level 11 → Level 12
        • Bandit Level 12 → Level 13
        • Bandit Level 13 → Level 14
        • Bandit Level 14 → Level 15
        • Bandit Level 15 → Level 16
        • Bandit Level 16 → Level 17
        • Bandit Level 17 → Level 18
        • Bandit Level 18 → Level 19
        • Bandit Level 19 → Level 20
        • Bandit Level 20→ Level 21
        • Bandit Level 21→ Level 22
        • Bandit Level 22 → Level 23
        • Bandit Level 23 → Level 24
        • Bandit Level 24 → Level 25
        • Bandit Level 25 → Level 26
        • Bandit Level 26 → Level 27
        • Bandit Level 27 → Level 28
        • Bandit Level 28 → Level 29
        • Bandit Level 29 → Level 30
        • Bandit Level 30 → Level 31
        • Bandit Level 31 → Level 32
        • Bandit Level 32 → Level 33
    • OWASP Juice Shop
      • Installation
      • Level 1 - Challenges
      • Level 2 - Challenges
    • TryHackMe Rooms
      • Anthem
      • Capture!
      • Corridor
      • Gotta Catch'em All!
      • Mustacchio
      • Neighbour
      • Opacity
      • Source
    • CEH v12 practical resources
  • Cryptology
    • CryptoHack
      • Course: Introduction to CryptoHack
        • Introduction - Challenges
        • General - Encoding
        • General - XOR
      • Course: Modular Arithmetic
        • General - Mathematics
        • Mathematics - Modular Math
        • Mathematics - Brainteasers Part 1
      • Course: Symmetric Cryptography
        • How AES Works
        • Symmetric Starter
        • Block Ciphers
        • Stream Ciphers
  • Red Team
    • Reconnaissance
      • Foot-printing
      • Scanning (Nmap)
      • Enumeration
    • Vulnerability Analysis
    • Initial Access
      • Obtaining credentials
      • Vulnerability Exploitation
        • Buffer Overflow
        • Metasploit and Armitage
        • Ninja Jonin
    • Active Directory
      • Connect to AD
      • AD Explore
      • CMD and PowerShell enumeration
      • Certificates in AD
      • LDAP Pass-back Attacks
      • Cracking NetNTLM Challenge with Responder
      • Exploring Configuration Files for AD Credentials
      • Pass the hash with evil WinRM
      • Understanding Runas
    • Malware
    • Sniffing
      • Intercept HTTP traffic - Hetty
      • Intercept HTTP traffic - Bettercap
      • Wireshark
    • Social Engineering
    • Denial of Service
    • Web Hacking
      • Burp Suite
      • OWASP ZAP
      • Web servers
      • Web Server Footprinting
      • Directory Enumeration
      • Session Hijacking
      • Web Shells
      • Web vulnerability scanners
      • SQL Injection
    • Cloud
    • Wireless Networks
      • Attacking WEP
      • Attacking WPA/WPA2
    • Mobile Devices
    • Network Security Evasion
    • Privileges Escalation
    • Maintain Access and Hide Malicious Activity
      • Backdooring
    • Cover your Tracks
  • Internet of Things
    • IoT in general
    • Common IoT Protocols
      • CoAP
      • MQTT
      • ZIGBEE
      • Bluetooth
    • Scapy
      • Sniffing and spoofing
      • ARP cache Poisoning
  • Projects
    • Cybersecurity Roadshow
Powered by GitBook
On this page
  • S3 Bucket Enumeration
  • lazys3
  • S3Scanner
  • AWS Client
  1. Red Team

Cloud

Cloud computing is a technology that allows individuals and organizations to access and use computer resources, such as servers, storage, databases, networking, software, and more, over the internet.

PreviousSQL InjectionNextWireless Networks

Last updated 1 year ago

Popular cloud service providers include , , and , among others.

S3 Bucket Enumeration

lazys3

is a Ruby script tool designed for AWS S3 bucket enumeration, employing various permutations to perform brute-force searches. It serves the purpose of identifying publicly accessible S3 buckets and offers the capability to search for S3 buckets associated with a particular company, facilitated by providing the company name as input.

ruby lazys3.rb <COMPANY>

S3Scanner

is a utility used to locate accessible AWS S3 buckets and extract their contents. It operates by taking a list of bucket names as input, then identifies and records the discovered S3 buckets in an output file. Additionally, the tool allows for the local extraction or listing of the contents from these accessible "open" buckets.

To scan a list of target websites for open S3 buckets and dump all open buckets while logging both open and closed buckets in "found.txt," use the following command:

python3 ./s3scanner.py sites.txt

To scan a list of target websites specified in "names.txt," including closed buckets in the output, and dump all open buckets while logging the results in "found.txt," you can use this command:

python3 ./s3scanner.py --include-closed --out-file found.txt --dump names.txt

If you want to scan a list of target websites in "names.txt" and log only open buckets in the default output file "buckets.txt," use the following command:

python3 ./s3scanner.py names.txt

To save the file listings of all open buckets from "names.txt" to a file, you can run the following command:

python ./s3scanner.py --list names.txt

AWS Client

The AWS Command Line Interface (CLI) is a tool designed for the management of AWS services which allows automate tasks through scripting.

To install the AWS CLI:

pip3 install awscli

To configure the AWS CLI:

aws configure

The configuration process will prompt you for the following details. Ensure you have logged into your AWS account to obtain these details:

  1. AWS Access Key ID

  2. AWS Secret Access Key

  3. Default region name

  4. Default output format

After providing these configuration details, you will be ready to use the AWS CLI.

Example AWS CLI command to list directories: aws s3 ls s3://[Bucket Name]

Make sure you have created your AWS account, which can be done at .

Amazon Web Services (AWS)
Microsoft Azure
Google Cloud Platform
Lazys3
S3Scanner
AWS Sign-Up