A vast collection of security tools for bug bounty, pentest and red teaming
Enumerate Google Storage buckets, check the access and if they can be privilege escalated.
UI-based tool with multiple techniques for attacking and enumerating Azure and AWS environment.
Collection of offensive tools targeting Microsoft Azure written in Python to be platform agnostic.
OSINT tool used to discover environments, directories, and subdomains of a particular domain.
S3 Objects Check
Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
Performs passive scan to identify buckets and test them for publicly accessible vulnerabilities.
Tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable.