S3Scanner
A tool to find open S3 buckets in AWS or other cloud providers:
- AWS
- DigitalOcean
- DreamHost
- GCP
- Linode
- Scaleway
- Custom
Key Features:
- Multi-threaded scanning for efficient bucket analysis.
- Supports built-in S3 storage providers and custom configurations.
- Scans bucket permissions to identify misconfigurations.
- Saves results to a Postgres database for analysis and reporting.
- Connects to RabbitMQ for automated scanning at scale.
- Offers Docker support for containerized deployments.
S3Scanner is used by:
- reconFTW
- ReNgine
- Axiom
Usage:
S3Scanner requires one type of input: -bucket, -bucket-file, or -mq.
It supports outputting to a Postgres database or JSON format.
Options include:
-enumerate: Enumerate bucket objects (can be time-consuming).-provider: Object storage provider (aws, custom, digitalocean, dreamhost, gcp, linode, scaleway).-threads: Number of threads to scan with.
