A flexible open-source intelligence (OSINT) application, CloudEnum is designed to effectively list public assets on popular cloud service providers, such as Google Cloud Platform (GCP), Azure (Microsoft Azure), and Amazon Web Services (AWS). Its goal is to make it easier to find a variety of services in these cloud settings while providing useful details about any security flaws.
Install
Navigate to the directory where you want to install CloudEnum and clone the repository using the following command:
Navigate to the cloud_enum directory:
Install the required Python dependenciesusing pip by executing the following command:
Now you can run CloudEnum by using the command:
This will display the usage help, showing the available options and functionality of CloudEnum.
Running
The tool requires at least one keyword asan argument. You can use built-in fuzzing strings, but better results can beobtained by supplying your own keywords with the -k, -m, and/or -b flags.
Example:
By default, DNS lookups and HTTP scrapes employ 5 threads per request. The number of threads can be changed, but use caution as certain cloud providers may place a rate limit on you. To increase to ten threads, for instance:
Note: Certain resources are detected per-region, such as GCPFunctions and Azure Containers. A"REGIONS" variable is defined in cloudenum/azure_regions.py and cloudenum/gcp_regions.py, and it is configured by default to utilise just 1 region in order to save time scanning. To make these files pertinent to your own work, you might wish to change them.
An example of how CloudEnum works
A powerful multi-cloudOSINT (Open-source intelligence) programme named Cloud Enum was developed in order to list public resources in well-known cloud service providers like AWS (Amazon Web Services), Azure (Microsoft Azure), and Google Cloud Platform (GCP). This application provides useful information about any security problems and helps locate different resources inside these cloud settings.
