Download
cloud_enum is an open source reconnaissance and OSINT tool designed to discover publicly accessible cloud resources across major cloud providers. It focuses on enumerating assets in Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform using keyword-based discovery techniques. It works by taking user-provided keywords and generating variations through mutation wordlists, then testing these combinations against common cloud service naming patterns. cloud_enum performs both HTTP probing and DNS lookups to identify resources such as storage buckets, cloud applications, and databases that may be exposed or accessible. cloud_enum uses concurrent processing to speed up scanning, enabling efficient enumeration of large numbers of possible resource names. It can identify both publicly accessible and protected resources, helping security researchers understand the external cloud footprint of an organization.
Features
- Enumerates cloud assets across AWS, Azure, and Google Cloud platforms
- Discovers resources using keyword mutation and wordlists
- Performs concurrent HTTP requests and DNS lookups for faster scanning
- Identifies cloud resources such as S3 buckets, storage accounts, and Firebase databases
- Supports brute forcing of certain resource names like Azure containers and GCP functions
- Outputs results in multiple formats including text, JSON, and CSV
Project Samples
