You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
404StarLink/detail/Cloud-Bucket-Leak-Detection...

3.2 KiB

Cloud-Bucket-Leak-Detection-Tools https://github.com/UzJu/Cloud-Bucket-Leak-Detection-Tools

Language Author GitHub stars Version Time

git clone https://github.com/UzJu/Cloud-Bucket-Leak-Detection-Tools.git
cd Cloud-Bucket-Leak-Detection-Tools/
# 安装依赖 建议使用Python3.8以上的版本 我的版本: Python 3.9.13 (main, May 24 2022, 21:28:31)
# 已经测试版本如下
# 1、python3.8.9
# 2、python3.9.13
# 3、python3.7
# 4、python3.6.15
# 5、python3.9.6
pip3 install -r requirements.txt
python3 main.py -h

image-20220716140707903

使用之前需要在config/conf.py文件配置自己对应的云厂商AK

image-20220716140934866

1、阿里云存储桶

1.1、单个存储桶检测

python3 main.py -aliyun [存储桶URL]

image-20220716141132931

1.2、自动存储桶劫持

当如果检测存储桶不存在时会自动劫持该存储桶

image-20220703202339058

1.3、批量存储桶地址检测

# fofa语法
domain="aliyuncs.com"
server="AliyunOSS"domain="aliyuncs.com"
# 使用-faliyun
python3 main.py -faliyun url.txt

image-20220716141356518

2、腾讯云存储桶

python3 main.py -tcloud [存储桶地址]

image-20220716141554856

3、华为云存储桶

python3 main.py -hcloud [存储桶地址]

image-20220716141948046

4、AWS存储桶

python3 main.py -aws [存储桶地址]

image-20220716142431142

5、扫描结果保存

扫描结果会存放在results目录下

image-20220716142617997

image-20220716142641883

项目相关

最近更新