poro: Scan for publicly accessible assets on your AWS environment

by do son ·

scan publicly accessible assets

poro

Scan for publicly accessible assets on your AWS environment

Services covered by this tool:

  • AWS ELB
  • API Gateway
  • S3 Buckets
  • RDS Databases
  • EC2 instances
  • Redshift Databases

Install

Prerequisites

  • AWS account with Read-Only Access to services listed above.
  • Python 3.X
  • Boto3 > 1.2X
  • Botocore > 1.2X
  • Requests > 2.2X

Download

git clone https://github.com/9rnt/poro.git

Use

Configure your environment with active credentials -> aws configure [sso]

Poro will print all exceptions raised when querying AWS APIs, the scanning result will be printed at the end of the output. Example of Poro output:

Source: https://github.com/9rnt/

Tags: AWSscan publicly accessible assets