Grayhat Warfare Buckets is a search engine for open Amazon S3 buckets and their contents. It allows users to search for files using keywords, filename extensions, and full path. The search engine treats all keywords as logical AND, and users can exclude keywords by adding a minus sign (-) before the keyword. The tool provides a way to discover exposed files and buckets on Amazon S3. The search engine provides various filters, including the ability to search for files containing specific keywords, excluding certain keywords, and searching by filename extensions. The tool also provides a random file search feature and a way to search public buckets. The tool is useful for security researchers, penetration testers, and organizations to identify exposed files and buckets on Amazon S3, which can help in identifying potential security risks.
FEATURES
ALTERNATIVES
Exploit that launches a process on the host from within a Docker container run with the --privileged flag by abusing the Linux cgroup v1 “notification on release” feature.
Discover and understand the Docker Layer 2 ICC Bug and its implications on inter-container communication.
Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well as regions, IP addresses and user agents they used.
AWS Cloud Security offers security services and compliance tools for securing data and applications on AWS.
A collection of security workshops and hands-on content for AWS security services and techniques
Automatically compile AWS SCPs for compliant AWS services based on preferred frameworks.
AWS Scout2 is a security tool for AWS administrators to assess their environment's security posture.
An AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.