Scribd
Upload
29 views

AWS S3 Bucket Leaks

Uploaded by

sewahi9783
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
29 views

AWS S3 Bucket Leaks

Uploaded by

sewahi9783
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 2

AWS S3 Bucket Leaks

Basic Test

AWS CLI

Google Dork

Tools A thread

🔓 Misconfigurations in S3 buckets often result in data leaks.

🔎 Encounter an S3 bucket during bug bounty hunting or pentesting? Or aiming to defend your own buckets?

🧪 Basic Browser Test

When you see a file:

https://<bucket-name>.s3-us-west-1.amazonaws.com/uploads/image.png

📂 Browse to the folder:

https://<bucket-name>.s3-us-west-1.amazonaws.com/uploads/

💻 AWS CLI
📜 List bucket contents
aws s3 ls s3://bucket-name
⬇️Download an file
aws s3 cp s3://bucket-name/file.png ./
💥 The bucket is vulnerable to public listing & read access.

📤 AWS CLI - File Upload


aws s3 cp ./localfile.txt s3://bucket-name/poc.txt
💥 The bucket is vulnerable to arbitrary public write access

🔎 Google Dork for AWS S3 Buckets

site:http://s3.amazonaws.com "example"

🎯 Make sure the bucket is in scope!

🛠️S3 Scanning Tools

S3Scanner:

https://github.com/sa7mon/S3Scanner

AWS Security Checks - Burp Ext:

https://portswigger.net/bappstore/f078b9254eab40dc8c562177de3d3b2d

Good write up that includes AWS CLI set up & finding buckets:

https://medium.com/@janijay007/s3-bucket-misconfiguration-from-basics-to-pawn-6893776d1007

Example H1 report:

https://hackerone.com/reports/819278

You might also like