Back to directory
WRITEUP #3586

How I was able Find mass leaked AWS s3 bucket from js File

CloudAWS misconfiguration
by@killmongar1996(Santosh Kumar Sha)
Program
-
Published
Jul 20, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://notifybugme.medium.com/how-i-was-able-find-mass-leaked-aws-s3-bucket-from-js-file-6064a5c247f8
RELATED WRITEUPS
The Hunt for ALBeast: A Technical Walkthrough
CloudAWS ALB
Addressed AWS defaults risks: OIDC, Terraform and Anonymous to AdministratorAccess
CloudOIDC
Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure AD
CloudPrivilege escalation
Bucket Monopoly: Breaching AWS Accounts Through Shadow Resources
CloudRCE
UnOAuthorized: Privilege Elevation Through Microsoft Applications
CloudPrivilege escalation

Built with ❤️ by Shubham Rawat