1 个仓库
Security audits specifically targeting the misconfigurations of S3-compatible API endpoints.
Distinct from Cloud Storage Scanning: Focuses on security auditing of S3 APIs rather than searching for sensitive data content within the storage.
Explore 1 awesome GitHub repository matching devops & infrastructure · S3-Compatible Security Scanning. Refine with filters or upvote what's useful.
S3Scanner is a security tool for auditing public access and misconfigured permissions across S3-compatible storage providers. It functions as a storage auditor and security scanner designed to identify open buckets, enumerate publicly accessible objects, and exfiltrate data from misconfigured cloud environments. The project is distinguished by its integration with message brokers, allowing it to consume target lists for large-scale cloud infrastructure audits. It also provides utilities for dumping the entire contents of misconfigured buckets to local directories and calculating the total siz
Audits public access and misconfigured permissions across various S3-compatible storage providers using a unified API interface.