Skip to content

πŸ”’ S3Sentinel: A robust tool for comprehensive security auditing of AWS S3 buckets, ensuring your data stays secure and private.

License

Notifications You must be signed in to change notification settings

TaylorBrennan/S3Sentinel

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

41 Commits
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 

Repository files navigation

This tool is currently in active development and will receive regular updates, please ensure you're using the latest version!

πŸ›‘οΈ S3Sentinel - Bucket Security Scanner πŸ•΅οΈβ€β™‚οΈ

S3Sentinel is your go-to tool for ensuring your AWS S3 buckets are fortified! πŸš€ It comprehensively scans your S3 buckets, checking for public access settings and ensuring your data is secured. πŸ”

Features 🌟

  • Comprehensive Scans: Deep dive into each bucket's ACL, policies, and public access settings. πŸ“Š
  • Object-Level Inspection: Peeks into objects within buckets to check their accessibility. πŸ”
  • User-Friendly: Easy-to-use with clear, informative output. πŸ€–

Getting Started πŸš€

Prerequisites

  • Python 3.x 🐍
  • AWS CLI configured with necessary permissions πŸ› οΈ
  • Love for secure data! ❀️

Installation πŸ‘¨β€πŸ’»

  1. Clone this repository:
    git clone https://github.com/TaylorBrennan/S3Sentinel.git
  2. Install the required packages:
    pip install -r requirements.txt

Usage

Simply run the script with your AWS Credentials:

python s3_sentinel.py -p <AWS_PROFILE> | -a <AWS_ACCESS_KEY_ID> -s <AWS_SECRET_ACCESS_KEY> [-t <AWS_SESSION_TOKEN>] [-m <MAX_OBJECTS>]

πŸ‘‰ Don't forget to replace <AWS_PROFILE> or <AWS_ACCESS_KEY_ID>, <AWS_SECRET_ACCESS_KEY>, and <AWS_SESSION_TOKEN> with your actual AWS credentials.

Example Output πŸ“œ

Console

[1 / 1] Bucket: BUCKET_NAME
        - Bucket Status: Unknown
        - Public via ACL: False
        - Public via Policy: False
        - Access Block Set: False
        - Exceeded Object Threshold: False (1/400)
        - Public Objects: 1
                - PUBLIC_OBJECT_NAME.TXT

JSON

{
  "BUCKET_NAME": {
    "bucket_status": "Unknown",
    "total_objects": 1,
    "max_objects_scanned": 400,
    "total_public_objects": 1,
    "public_objects": ["PUBLIC_OBJECT_NAME.TXT"],
    "public_via_acl": false,
    "public_via_policy": false,
    "access_block": false
  }
}

Contributing

Contributions are what make the open-source community such an amazing place to learn, inspire, and create. Any contributions you make are greatly appreciated.

1. Fork the Project
2. Create your Feature Branch (git checkout -b feature/AmazingFeature)
3. Commit your Changes (git commit -m 'Add some AmazingFeature')
4. Push to the Branch (git push origin feature/AmazingFeature)
5. Open a Pull Request

License

Distributed under the MIT License. See LICENSE for more information.

Support My Work β˜•

If you find S3Sentinel helpful, consider supporting my work! Whether it's a cup of coffee or just a small token of appreciation, your support means a lot and helps me continue developing and improving tools like this.

Buy Me A Coffee

Click the image above to buy me a coffee. Thank you for your support! πŸ™

Legal Notice

Disclaimer: S3Sentinel ("the tool") is provided as-is without any guarantees or warranty. While the tool is developed with a focus on safety and accuracy, users are advised to use it at their own risk. The author of the tool, is not responsible for any direct, indirect, incidental, consequential, or any other damages arising out of the use of the tool, including data loss or corruption, or any consequences incurred by relying on the tool’s output. Users are encouraged to independently verify the tool's findings for accuracy and completeness. The tool is not intended to replace professional advice or custom security solutions tailored to specific circumstances.

About

πŸ”’ S3Sentinel: A robust tool for comprehensive security auditing of AWS S3 buckets, ensuring your data stays secure and private.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages