AWSBucketDump
Tool and Usage
Project details | |
---|---|
License | MIT |
Programming language | Python |
Author | Jordan Potti |
Latest release | No release found |
Project health
Links
GitHub project |
Why this tool?
AWSBucketDump is a security tool to find interesting files in AWS S3 buckets that are part of Amazon cloud services. These storage containers may have interesting files, which a tool like AWSBucketDump can discover.
How it works
AWSBucketDump is using a Python script to parse a list of names. Using that list it tries to guess valid bucket names. Using a keywords list the most interesting items can be filtered from the results.
Usage and audience
AWSBucketDump is commonly used for configuration audit, discovery of sensitive information, or security assessment. Target users for this tool are security professionals.
Features
- Command line interface
Example usage and output
optional arguments:
-h, --help show this help message and exit
-D Download files. This requires significant diskspace
-d If set to 1 or True, create directories for each host w/ results
-t THREADS number of threads
-l HOSTLIST
-g GREPWORDS Provide a wordlist to grep for
-m MAXSIZE Maximum file size to download.
python AWSBucketDump.py -l BucketNames.txt -g interesting_Keywords.txt -D -m 500000 -d 1
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
Strengths
- + More than 500 GitHub stars
- + The source code of this software is available
Weaknesses
- - No releases on GitHub available
Installation
Supported operating systems
AWSBucketDump is known to work on Linux.
Dependencies
Several dependencies are required to use AWSBucketDump.
- argparse
- requests
- xmltodict
AWSBucketDump alternatives
Similar tools to AWSBucketDump:
Bucket Finder
Bucket Finder is one of the available security tools to discover AWS S3 buckets. Read the review and how it works.
BuQuikker
BuQuikker is a security tool to scan the Amazon S3 storage service. Its goal is to find open and unprotected S3 buckets.
inSp3ctor
The inSp3ctor tool helps to find S3 buckets and objects on Amazon's AWS platform. Read the review and see how it works.
This tool page was updated at . Found an improvement? Help the community by submitting an update.
Related tool information
Categories
This tool is categorized as a Amazon S3 bucket scanner and AWS security tool.