Find Exposed & Risky S3 Buckets Fast!

Introduction

S3 buckets are often attacked and are a common cause of data loss. Scanning and reducing exposure are key to ensuring data integrity and security.

The What

This tool will help you scan all S3 buckets quickly and identify the riskiest for review via Powershell CLI.

Pre-requisites

How to install is laid out within the AWS documentation here: How to install

Once done, you will need the following modules:

Install-AWSToolsModule AWS.Tools.S3

The script also works based on “profiles”. This is laid out in the documentation link above. Once you have these profiles, you can run this script.

Running

Once you are up and running, download the script from GitHub here…

Run the script, and enter the chosen profile:

Once entered, it will scan through S3 Buckets and find those exposed to the Public (ignoring configuration for now).

With this list, it will scan for common configurations to highlight any that may need to be reviewed. It will also include those it couldn’t scan, so nothing is missed.

If you enjoyed reading my content and want to support, why not consider signing up and becoming a member. It’s $5 a month, for unlimited access to all stories on Medium. Join now! 🙂

Need help? Why not also check out my Fiverr or UpWork.

Regardless, thank you for reading!

Advertisement

Securethelogs

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Create a website or blog at WordPress.com

%d bloggers like this: