{"id":13418,"date":"2021-06-13T18:19:44","date_gmt":"2021-06-13T12:49:44","guid":{"rendered":"https:\/\/kalilinuxtutorials.com\/?p=13418"},"modified":"2021-06-13T18:19:44","modified_gmt":"2021-06-13T12:49:44","slug":"bucky","status":"publish","type":"post","link":"https:\/\/kalilinuxtutorials.com\/bucky\/","title":{"rendered":"Bucky : An Automatic S3 Bucket Discovery Tool"},"content":{"rendered":"\n

Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules Bucky firefox addon and Bucky backend engine. Bucky addon reads the source code of the webpages and uses Regular Expression(Regex) to match the S3 bucket used as Content Delivery Network(CDN) and sends it to the Bucky Backend engine. The backend engine receives the data from addon and checks if the S3 bucket is publicly writeable or not. Bucky automatically uploads a text file as Proof Of Concept(PoC) if the bucket is vulnerable.<\/p>\n\n\n\n

Working<\/strong><\/p>\n\n\n\n

Bucky addon sends the details of s3 bucket name discovered from a user visited web pages to backend engine. It uses AWS PHP SDK<\/a> to discover misconfiguration. Users can also check for S3 bucket misconfiguration manually. All the results from automatic and manuall check are populated to dashboard.<\/p>\n\n\n\n

Installation<\/strong><\/p>\n\n\n\n

git clone https:\/\/github.com\/smaranchand\/bucky.git
cd bucky<\/strong><\/p>\n\n\n\n

Requirements: AWS Access Keys and PHP installation<\/p>\n\n\n\n

Get AWS Access Keys: https:\/\/console.aws.amazon.com\/iam\/home?#\/security_credentials<\/a><\/p>\n\n\n\n

PHP installation: Install according to your OS, apt install php7.3 \/ brew install php7.3<\/p>\n\n\n\n

Currently, Bucky addon is not published in the Firefox addon store; as soon as the addon will be published, the addon link will be provided.<\/p>\n\n\n\n

For now, users can manually load the addon into the browser to do so<\/p>\n\n\n\n

  1. Open Firefox browser and visit about:debugging<\/li>
  2. Click on “This Firefox” > Load Temporary Add-on<\/li>
  3. Select the addon located at bucky\/addon\/bucky.js<\/li><\/ol>\n\n\n\n

    Add AWS Access keys:<\/p>\n\n\n\n

    cd bucky\/
    nano config.inc.php
    Add your AWS Access Key ID and Secret Access Key. (On-Line 57 and 61)<\/strong><\/p>\n\n\n\n

    Usage<\/strong><\/p>\n\n\n\n

    To use Bucky, load the Bucky addon to the browser and start backend engine.<\/p>\n\n\n\n

    cd bucky\/
    chmod +x run.sh
    .\/run.sh
    The backend engine runs on http:\/\/127.0.0.1:13337
    Browse websites, Bucky will discover S3 buckets automatically and will be reflected in the dashboard.
    Visit the above address to access Bucky dashboard.<\/strong><\/p>\n\n\n\n

    Screenshots<\/strong><\/p>\n\n\n\n

    Running Bucky<\/p>\n\n\n\n

    \"\"\/<\/figure>\n\n\n\n

    Loading Addon<\/strong><\/p>\n\n\n\n

    \"\"\/<\/figure>\n\n\n\n

    User Interface<\/strong><\/p>\n\n\n\n

    \"\"\/<\/figure>\n\n\n\n

    All Buckets<\/strong><\/p>\n\n\n\n

    \"\"\/<\/figure>\n\n\n\n

    Manual Check<\/strong><\/p>\n\n\n\n

    \"\"\/<\/figure>\n\n\n\n

    POC By Bucky<\/strong><\/p>\n\n\n\n

    \"\"\/<\/figure>\n\n\n\n
    \n
    Download<\/strong><\/a><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

    Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules Bucky firefox addon and Bucky backend engine. Bucky addon reads the source code of the webpages and uses Regular Expression(Regex) to match the S3 bucket used as Content Delivery Network(CDN) and sends it to the Bucky Backend engine. […]<\/p>\n","protected":false},"author":4,"featured_media":16868,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png","fifu_image_alt":"Bucky : An Automatic S3 Bucket Discovery Tool","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[28],"tags":[474,475,2912],"class_list":["post-13418","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kali","tag-bucket","tag-bucky","tag-s3"],"yoast_head":"\nBucky : An Automatic S3 Bucket Discovery Tool<\/title>\n<meta name=\"description\" content=\"Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/kalilinuxtutorials.com\/bucky\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Bucky : An Automatic S3 Bucket Discovery Tool\" \/>\n<meta property=\"og:description\" content=\"Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/kalilinuxtutorials.com\/bucky\/\" \/>\n<meta property=\"og:site_name\" content=\"Kali Linux Tutorials\" \/>\n<meta property=\"article:published_time\" content=\"2021-06-13T12:49:44+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png\" \/>\n<meta name=\"author\" content=\"R K\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png\" \/>\n<meta name=\"twitter:creator\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:site\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"R K\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/bucky\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bucky\/\"},\"author\":{\"name\":\"R K\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad\"},\"headline\":\"Bucky : An Automatic S3 Bucket Discovery Tool\",\"datePublished\":\"2021-06-13T12:49:44+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bucky\/\"},\"wordCount\":344,\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bucky\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png\",\"keywords\":[\"Bucket\",\"Bucky\",\"S3\"],\"articleSection\":[\"Kali Linux\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/bucky\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/bucky\/\",\"name\":\"Bucky : An Automatic S3 Bucket Discovery Tool\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bucky\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/bucky\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png\",\"datePublished\":\"2021-06-13T12:49:44+00:00\",\"description\":\"Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules.\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/kalilinuxtutorials.com\/bucky\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/bucky\/#primaryimage\",\"url\":\"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png\",\"contentUrl\":\"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"name\":\"Kali Linux Tutorials\",\"description\":\"Kali Linux Tutorials\",\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\",\"name\":\"Kali Linux Tutorials\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"contentUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"width\":272,\"height\":90,\"caption\":\"Kali Linux Tutorials\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/CyberEdition\",\"https:\/\/www.threads.com\/@cybersecurityedition\",\"https:\/\/www.linkedin.com\/company\/cyberedition\",\"https:\/\/www.instagram.com\/cybersecurityedition\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad\",\"name\":\"R K\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g\",\"caption\":\"R K\"},\"url\":\"https:\/\/kalilinuxtutorials.com\/author\/ranjith\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Bucky : An Automatic S3 Bucket Discovery Tool","description":"Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/kalilinuxtutorials.com\/bucky\/","og_locale":"en_US","og_type":"article","og_title":"Bucky : An Automatic S3 Bucket Discovery Tool","og_description":"Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules.","og_url":"https:\/\/kalilinuxtutorials.com\/bucky\/","og_site_name":"Kali Linux Tutorials","article_published_time":"2021-06-13T12:49:44+00:00","og_image":[{"url":"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png","type":"","width":"","height":""}],"author":"R K","twitter_card":"summary_large_image","twitter_image":"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png","twitter_creator":"@CyberEdition","twitter_site":"@CyberEdition","twitter_misc":{"Written by":"R K","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/kalilinuxtutorials.com\/bucky\/#article","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/bucky\/"},"author":{"name":"R K","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad"},"headline":"Bucky : An Automatic S3 Bucket Discovery Tool","datePublished":"2021-06-13T12:49:44+00:00","mainEntityOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/bucky\/"},"wordCount":344,"publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/bucky\/#primaryimage"},"thumbnailUrl":"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png","keywords":["Bucket","Bucky","S3"],"articleSection":["Kali Linux"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/kalilinuxtutorials.com\/bucky\/","url":"https:\/\/kalilinuxtutorials.com\/bucky\/","name":"Bucky : An Automatic S3 Bucket Discovery Tool","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/bucky\/#primaryimage"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/bucky\/#primaryimage"},"thumbnailUrl":"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png","datePublished":"2021-06-13T12:49:44+00:00","description":"Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules.","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/kalilinuxtutorials.com\/bucky\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/bucky\/#primaryimage","url":"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png","contentUrl":"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png"},{"@type":"WebSite","@id":"https:\/\/kalilinuxtutorials.com\/#website","url":"https:\/\/kalilinuxtutorials.com\/","name":"Kali Linux Tutorials","description":"Kali Linux Tutorials","publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/kalilinuxtutorials.com\/#organization","name":"Kali Linux Tutorials","url":"https:\/\/kalilinuxtutorials.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/","url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","contentUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","width":272,"height":90,"caption":"Kali Linux Tutorials"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/CyberEdition","https:\/\/www.threads.com\/@cybersecurityedition","https:\/\/www.linkedin.com\/company\/cyberedition","https:\/\/www.instagram.com\/cybersecurityedition\/"]},{"@type":"Person","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad","name":"R K","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g","caption":"R K"},"url":"https:\/\/kalilinuxtutorials.com\/author\/ranjith\/"}]}},"jetpack_featured_media_url":"https:\/\/1.bp.blogspot.com\/-e5i7WjTCDKM\/YMGuVFW0a9I\/AAAAAAAAJYs\/zz0jXIcQFJ8h8bW1wFawl5BVNqwM5HAoQCLcBGAsYHQ\/s728\/bucky.png","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":10170,"url":"https:\/\/kalilinuxtutorials.com\/sandcastle\/","url_meta":{"origin":13418,"position":0},"title":"Sandcastle : A Python Script For AWS S3 Bucket Enumeration","author":"R K","date":"April 9, 2020","format":false,"excerpt":"Inspired by a conversation with Instacart's @nickelser on HackerOne, I've optimized and published Sandcastle \u2013 a Python script for AWS S3 bucket enumeration, formerly known as bucketCrawler. The script takes a target's name as the stem argument (e.g. shopify) and iterates through a file of bucket name permutations, such as\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":9789,"url":"https:\/\/kalilinuxtutorials.com\/awsgen-py-aws-s3-bucket-name-generator-beta-v\/","url_meta":{"origin":13418,"position":1},"title":"AWSGen.py : AWS S3 Bucket Name Generator (beta v.)","author":"R K","date":"March 19, 2020","format":false,"excerpt":"AWSGen.py\u00a0is a simple tool for generates permutations, alterations and mutations of AWS S3 Buckets Names Also Read - Betwixt : Web Debugging Proxy Based On Chrome Devtools Network Panel Example: Download","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":19671,"url":"https:\/\/kalilinuxtutorials.com\/domain-protect\/","url_meta":{"origin":13418,"position":2},"title":"Domain-Protect : Protect Against Subdomain Takeover","author":"R K","date":"October 28, 2021","format":false,"excerpt":"Domain-Protect scans Amazon Route53 across an AWS Organization for domain records vulnerable to takeovervulnerable domains in Google Cloud DNS can be detected by\u00a0Domain Protect for GCP deploy to security audit account scan your entire AWS Organization receive alerts by Slack or email or manually scan from your laptop Subdomain Detection\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/blogger.googleusercontent.com\/img\/a\/AVvXsEiDCv1BHrBUFEu1Gb5YeSLjQ3F-VqYMGhaHTYib9mKHPM-vGYpMuBeLzE_24nZpXWGV8LakGinNbaOqH9kopsFIToW2XCsYXOy-IV57oT1M1X5NgjBiXK1plY1gbQ4LmMxTbtK8m2nzoYOewtETPL9zgTGgV5KPKnyaVb63bRr7HDsBbKI81hBrGm68=s755","width":350,"height":200,"srcset":"https:\/\/blogger.googleusercontent.com\/img\/a\/AVvXsEiDCv1BHrBUFEu1Gb5YeSLjQ3F-VqYMGhaHTYib9mKHPM-vGYpMuBeLzE_24nZpXWGV8LakGinNbaOqH9kopsFIToW2XCsYXOy-IV57oT1M1X5NgjBiXK1plY1gbQ4LmMxTbtK8m2nzoYOewtETPL9zgTGgV5KPKnyaVb63bRr7HDsBbKI81hBrGm68=s755 1x, https:\/\/blogger.googleusercontent.com\/img\/a\/AVvXsEiDCv1BHrBUFEu1Gb5YeSLjQ3F-VqYMGhaHTYib9mKHPM-vGYpMuBeLzE_24nZpXWGV8LakGinNbaOqH9kopsFIToW2XCsYXOy-IV57oT1M1X5NgjBiXK1plY1gbQ4LmMxTbtK8m2nzoYOewtETPL9zgTGgV5KPKnyaVb63bRr7HDsBbKI81hBrGm68=s755 1.5x, https:\/\/blogger.googleusercontent.com\/img\/a\/AVvXsEiDCv1BHrBUFEu1Gb5YeSLjQ3F-VqYMGhaHTYib9mKHPM-vGYpMuBeLzE_24nZpXWGV8LakGinNbaOqH9kopsFIToW2XCsYXOy-IV57oT1M1X5NgjBiXK1plY1gbQ4LmMxTbtK8m2nzoYOewtETPL9zgTGgV5KPKnyaVb63bRr7HDsBbKI81hBrGm68=s755 2x"},"classes":[]},{"id":14187,"url":"https:\/\/kalilinuxtutorials.com\/s3-account-search\/","url_meta":{"origin":13418,"position":3},"title":"S3-Account-Search : S3 Account Search","author":"R K","date":"July 7, 2021","format":false,"excerpt":"S3-Account-Search tool lets you find the account id an S3 bucket belongs too. For this to work you need to have at least one of these permissions: Permission to download a known file from the bucket (s3:getObject).Permission to list the contents of the bucket (s3:ListBucket). Additionally, you will need a\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":8060,"url":"https:\/\/kalilinuxtutorials.com\/s3tk-security-toolkit-amazon-s3\/","url_meta":{"origin":13418,"position":4},"title":"S3TK : A Security Toolkit For Amazon S3","author":"R K","date":"January 7, 2020","format":false,"excerpt":"S3TK is a security toolkit for Amazon S3. Installation Run: pip install s3tk You can use the AWS CLI to set up your AWS credentials: pip install awscli aws configure Commands Scan Scan your buckets for: ACL open to publicpolicy open to publiclogging enabledversioning enableddefault encryption enabled s3tk scan Only\u2026","rel":"","context":"In "Kali Linux"","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":35734,"url":"https:\/\/kalilinuxtutorials.com\/awesomeuserfinder\/","url_meta":{"origin":13418,"position":5},"title":"AWeSomeUserFinder : Harnessing AWS IAM For Username Enumeration And Password Security","author":"Varshini","date":"January 23, 2025","format":false,"excerpt":"AWS IAM Username Enumerator and Password Spraying Tool in Python3 In order to use the tool with the UpdateAssumeRolePolicy method, the IAM user account utilized must have the following permissions attached: \"iam:GetRole\" \"iam:CreatePolicy\" \"iam:UpdateAssumeRolePolicy\" \"iam:CreateRole\" \"iam:AttachRolePolicy\" An example policy is included in the files named \"example_assume_role_policy.json\" in the example_policies directory.\u2026","rel":"","context":"In "Hacking Tools"","block_context":{"text":"Hacking Tools","link":"https:\/\/kalilinuxtutorials.com\/category\/hacking-tools\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/01\/AWeSomeUserFinder-.webp?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/01\/AWeSomeUserFinder-.webp?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/01\/AWeSomeUserFinder-.webp?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/01\/AWeSomeUserFinder-.webp?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/01\/AWeSomeUserFinder-.webp?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/01\/AWeSomeUserFinder-.webp?resize=1400%2C800&ssl=1 4x"},"classes":[]}],"_links":{"self":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/13418","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/comments?post=13418"}],"version-history":[{"count":0,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/13418\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media\/16868"}],"wp:attachment":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media?parent=13418"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/categories?post=13418"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/tags?post=13418"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}