AWSBucketDump is a Python-based tool designed to enumerate and extract interesting files from AWS S3 buckets efficiently.
Security Tool to Look For Interesting Files in S3 Buckets
This tool is primarily used by security professionals and penetration testers to discover publicly accessible or misconfigured AWS S3 buckets and identify sensitive or valuable files within them. It helps automate the process of bucket enumeration, file searching, and optional downloading, aiding in cloud security assessments and data leakage investigations.
Users should be cautious when enabling the download feature as it can quickly consume large amounts of disk space. The tool uses two threads by default for checking buckets and downloading files, but this can be adjusted. No confirmed AWS rate limits are known, so users should monitor for potential throttling. Custom wordlists are recommended for more effective enumeration and grep searches.
Create a Python 3.6 virtual environment: virtualenv-3.6 venv
Activate the virtual environment: source venv/bin/activate
Install required Python libraries: pip install -r requirements.txtpython AWSBucketDump.py -l BucketNames.txt -g interesting_Keywords.txt -D -m 500000 -d 1
Enumerate buckets listed in BucketNames.txt, grep for keywords in interesting_Keywords.txt, download matching files up to 500000 bytes, and create directories for each host.
python AWSBucketDump.py -h
Display help message with all available command line options.