tags: Cloud_Hacking CloudBrute
Per cercare bucket pubblici di un dominio tramite l’utilizzo di una wordlist possiamo utilizzare il seguente comando:
./cloudbrute -d <target.com> -k <keyword> -t 80 -T 10 -w /<path_to_wordlist>.txt -d amazon.com: Specifies the target bucket hosting domain; here, “amazon.com”. -k facebook: Sets the keyword or pattern to search for within the target domain, here “facebook”. -t 80: Specifies the threads, here 80. -T 10: Sets the timeout option. -w bucket_list.txt: Specifies the wordlist file to use for the attack; here, “bucket_list.txt”.
Per scansionare cloud microsoft usa -k microsoft.com e per scansionare quelli Google -k GCP.
