项目作者: mlcsec

项目描述 :
Cloud Discovery - brute force public AWS, GCP, Alibaba, and Azure cloud services
高级语言: Go
项目地址: git://github.com/mlcsec/clovery.git
创建时间: 2020-02-27T00:04:07Z
项目社区:https://github.com/mlcsec/clovery

开源协议:

下载


clovery

Cloud Discovery - brute force public AWS, GCP, Alibaba, and Azure cloud services.

asciicast

Info

  • Cloud providers will rate limit you if usage too frequent/heavy or wordlist too big (no output)
  • 403 errors aid in further discovery - consider mutating wordlist


Installation

  1. go get github.com/mlcsec/clovery


Help

  1. $ clovery -h
  2. Usage:
  3. cat wordlist.txt | clovery -aws
  4. cat wordlist.txt | clovery -ali -ali-reg <region>
  5. Options:
  6. -ali alibaba OSS (-ali-reg required)
  7. -ali-reg
  8. Regions: (-ali option only)
  9. =====================================
  10. oss-cn-hangzhou oss-cn-shanghai
  11. oss-cn-qingdao oss-cn-beijing
  12. oss-cn-zhangjiakou oss-cn-huhehaote
  13. oss-cn-shenzhen oss-cn-chengdu
  14. oss-cn-hongkong oss-us-west-1
  15. oss-us-east-1 oss-ap-southeast-1
  16. oss-ap-southeast-2 oss-ap-southeast-3
  17. oss-ap-southeast-5 oss-ap-northeast-1
  18. oss-ap-south-1 oss-eu-central-1
  19. oss-eu-west-1 oss-me-east-1
  20. -aws aws s3 buckets
  21. -azb azure blob storage
  22. -azd azure databases
  23. -azv azure virtual machines (-azv-reg required)
  24. -azu-reg
  25. Regions: (-azv option only)
  26. =====================================
  27. australiacentral australiacentral2
  28. australiaeast australiasoutheast
  29. brazilsouth canadacentral
  30. canadaeast centralindia
  31. centralus eastasia
  32. eastus eastus2
  33. francecentral francesouth
  34. japaneast japanwest
  35. koreacentral koreasouth
  36. northcentralus northeurope
  37. southafricanorth southafricawest
  38. southcentralus southeastasia
  39. southindia uksouth
  40. ukwest westcentralus
  41. westeurope westindia
  42. westus westus2
  43. -azw azure websites
  44. -c concurrency level (default 20)
  45. -fe show 403 forbidden errors
  46. -gcp gcp storage
  47. -t timeout milliseconds (default 10000)


Wordlists

  • createWordlists.sh uses sed to append given keyword to front & back of the supplied wordlist
  • Tailor any wordlist based on given keyword