Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/jordanpotti/AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
https://github.com/jordanpotti/AWSBucketDump
bugbounty enumeration penetration-testing s3-bucket
Last synced: about 1 month ago
JSON representation
Security Tool to Look For Interesting Files in S3 Buckets
- Host: GitHub
- URL: https://github.com/jordanpotti/AWSBucketDump
- Owner: jordanpotti
- License: mit
- Created: 2017-06-29T19:44:01.000Z (over 7 years ago)
- Default Branch: master
- Last Pushed: 2024-04-10T06:15:23.000Z (8 months ago)
- Last Synced: 2024-10-16T04:42:30.546Z (about 2 months ago)
- Topics: bugbounty, enumeration, penetration-testing, s3-bucket
- Language: Python
- Homepage:
- Size: 435 KB
- Stars: 1,358
- Watchers: 46
- Forks: 240
- Open Issues: 8
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- awesome-bugbounty-tools - AWSBucketDump - Security Tool to Look For Interesting Files in S3 Buckets (Miscellaneous / Buckets)
- Awesome-Pentest - AWSBucketDump - Security Tool to Look For Interesting Files in S3 Buckets. (AWS)
- WebHackersWeapons - AWSBucketDump
- awesome-sec-s3 - AWSBucketDump - AWSBucketDump is a tool to quickly enumerate AWS S3 buckets to look for loot (Awesome AWS S3 Security [![Awesome](https://cdn.rawgit.com/sindresorhus/awesome/d7305f38d29fed78fa85652e3a63e154dd8e8829/media/badge.svg)](https://github.com/mxm0z/awesome-sec-s3))
- awesome-hacking-lists - jordanpotti/AWSBucketDump - Security Tool to Look For Interesting Files in S3 Buckets (Python)
README
# AWSBucketDump
#### AWSBucketDump is a tool to quickly enumerate AWS S3 buckets to look for loot. It's similar to a subdomain bruteforcer but is made specifically for S3 buckets and also has some extra features that allow you to grep for delicious files as well as download interesting files if you're not afraid to quickly fill up your hard drive.
#### [@ok_bye_now](https://twitter.com/ok_bye_now)## Pre-Requisites
Non-Standard Python Libraries:* xmltodict
* requests
* argparseCreated with Python 3.6
### Install with virtualenv
```virtualenv-3.6 venv
source venv/bin/activate
pip install -r requirements.txt
```## General
This is a tool that enumerates Amazon S3 buckets and looks for interesting files.
I have example wordlists but I haven't put much time into refining them.
https://github.com/danielmiessler/SecLists will have all the word lists you need. If you are targeting a specific company, you will likely want to use jhaddix's enumall tool which leverages recon-ng and Alt-DNS.
https://github.com/jhaddix/domain && https://github.com/infosec-au/altdns
As far as word lists for grepping interesting files, that is completely up to you. The one I provided has some basics and yes, those word lists are based on files that I personally have found with this tool.
Using the download feature might fill your hard drive up, you can provide a max file size for each download at the command line when you run the tool. Keep in mind that it is in bytes.
I honestly don't know if Amazon rate limits this, I am guessing they do to some point but I haven't gotten around to figuring out what that limit is. By default there are two threads for checking buckets and two buckets for downloading.
After building this tool, I did find an [interesting article](https://community.rapid7.com/community/infosec/blog/2013/03/27/1951-open-s3-buckets) from Rapid7 regarding this research.
## Usage:
usage: AWSBucketDump.py [-h] [-D] [-t THREADS] -l HOSTLIST [-g GREPWORDS] [-m MAXSIZE]
optional arguments:
-h, --help show this help message and exit
-D Download files. This requires significant diskspace
-d If set to 1 or True, create directories for each host w/ results
-t THREADS number of threads
-l HOSTLIST
-g GREPWORDS Provide a wordlist to grep for
-m MAXSIZE Maximum file size to download.
python AWSBucketDump.py -l BucketNames.txt -g interesting_Keywords.txt -D -m 500000 -d 1### Contributors
[jordanpotti](https://github.com/jordanpotti)
[grogsaxle](https://github.com/grogsaxle)
[codingo](https://github.com/codingo)
[aarongorka](https://github.com/aarongorka)
[BHaFSec](https://github.com/BHaFSec)
[paralax](https://github.com/paralax)
[fzzo](https://github.com/fzzo)
[rypb](https://github.com/rypb)