Bucket scanner
Build with ❤ in Golang
Table of Contents generated with DocToc
The use of this tool or software is intended solely for educational and learning purposes.
It is not intended for any illegal, unethical, or malicious activities. By using this tool, you agree that:
You will use it exclusively for educational and non-malicious purposes. You will not engage in any illegal or harmful activities using this tool.You understand that the tool is provided as-is, without any warranties or guarantees of any kind.You accept full responsibility for any actions you undertake with this tool and any consequences that may arise.You release the creators, maintainers, and distributors of this tool from any legal liability or responsibility for its use.You will comply with all applicable laws and regulations while using this tool. Please be aware that misuse of this tool may have serious legal and ethical consequences. Always ensure that you have the appropriate permissions and consent before using it in any context.
By using this tool, you acknowledge and agree to the terms and conditions outlined above.
Bucket fuzzer. For the moment only supports AWS S3 bucket
.
Pending to do:
- gcp buckets
- azure buckets
- other endpoints that can be useful
git clone https://github.com/containerscrew/bucketscan.git
cd bucketscan/
go run main.go -k containerscrew -d assets/fuzz.txt
$ go run main.go -k containerscrew -q # quick scan only matching https://KEYWORD.s3.amazonaws.com
$ go run main.go -k containerscrew -d assets/fuzz.txt -w 5 # limit number of concurrent workers (goroutines)
$ go run main.go -k keyword1 -k keyword2 -d assets/fuzz.txt # user multiple keywords
Download your custom dictionary list, for example, from this repo and use it with -d
flag.
The program will create mutations using the keyword(s) you provide and the words inside dictionary. So if you are trying to find buckets with the keyword containerscrew
(https://containerscrew.s3.amazonaws.com), use it in the command line:
$ go run main.go -k containerscrew -d assets/fuzz.txt
Pull requests are welcome! Any code refactoring, improvement, implementation.