{"id":12512,"date":"2020-01-07T00:13:00","date_gmt":"2020-01-06T23:13:00","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=12512"},"modified":"2020-01-06T22:49:46","modified_gmt":"2020-01-06T21:49:46","slug":"ntzliche-tools-fr-die-aws-cloud-sicherheit","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/01\/07\/ntzliche-tools-fr-die-aws-cloud-sicherheit\/","title":{"rendered":"Useful tools for AWS cloud security"},"content":{"rendered":"

[German<\/a>]A tip for people who are responsible for the administration of Amazon Cloud Solutions (AWS etc.). In order to detect weaknesses early, you should be aware of the IP addresses and subdomains used. <\/p>\n

<\/p>\n

An orphaned subdomain that refers to a service that no longer exists could be taken over by a third party (this has happened many times before). However, there are tools that can be used to check whether, for example, subdomains refer to services that no longer exist and can thus be taken over. Other tools allow you to list all subdomains or public IP addresses associated with an AWS account. <\/p>\n

\n

Sub-Domain TakeOver Vulnerability Scannerhttps:\/\/t.co\/sxN38nAiwo<\/a><\/p>\n

Recursive DNS Subdomain Enumeratorhttps:\/\/t.co\/B9bFhdEQ5U<\/a><\/p>\n

ReconPi – A lightweight recon toolhttps:\/\/t.co\/vVJXIeVntx<\/a><\/p>\n

Fetch all public IP addresses tied to your AWS accounthttps:\/\/t.co\/sM9QF8A3zQ<\/a>#bugbounty<\/a><\/p>\n

\u2014 A hacker's life (@Unknownuser1806) January 6, 2020<\/a><\/p><\/blockquote>\n