Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Detect websites using AWS bucket storage

By kannthu

Informative
Vidoc logoVidoc Module
#aws#tech#bucket
Description

What is "Detect websites using AWS bucket storage?"

This module is designed to detect websites that are using AWS bucket storage. It focuses on identifying misconfigurations or vulnerabilities related to the use of AWS buckets. The severity of the detected issues is informative, meaning they provide valuable insights but may not pose an immediate threat. The original author of this module is pdteam.

Impact

The impact of misconfigured or vulnerable AWS bucket storage can vary depending on the specific issue detected. It could potentially lead to unauthorized access, data leaks, or other security risks. It is important to address any identified issues promptly to ensure the security and integrity of the AWS bucket storage.

How the module works?

This module works by analyzing the HTTP requests and matching them against specific conditions. It checks for the presence of certain headers, such as x-amz-bucket, x-amz-request, x-amz-id, and amazons3, to identify websites using AWS bucket storage. Additionally, it verifies the absence of the x-guploader-uploadid header to exclude false positives.

Here is a simplified example of an HTTP request that the module may send:

GET / HTTP/1.1
Host: example.com
User-Agent: Vidoc-Scanner

The module's matching conditions are based on the presence or absence of specific headers in the HTTP requests. It uses a combination of logical operators, such as or and and, to define the conditions. For example, it checks if any of the specified headers are present using the or condition, while excluding websites with the x-guploader-uploadid header using the and condition.

Module preview

Concurrent Requests (0)
Passive global matcher
dsl: contains(toLower(all_headers), `x-amz-bu...and
NOT dsl: contains(toLower(all_headers), `x-guploa...
On match action
Report vulnerability