This tool is currently in active development and will receive regular updates, please ensure you're using the latest version!
S3Sentinel is your go-to tool for ensuring your AWS S3 buckets are fortified! π It comprehensively scans your S3 buckets, checking for public access settings and ensuring your data is secured. π
- Comprehensive Scans: Deep dive into each bucket's ACL, policies, and public access settings. π
- Object-Level Inspection: Peeks into objects within buckets to check their accessibility. π
- User-Friendly: Easy-to-use with clear, informative output. π€
- Python 3.x π
- AWS CLI configured with necessary permissions π οΈ
- Love for secure data! β€οΈ
- Clone this repository:
git clone https://github.com/TaylorBrennan/S3Sentinel.git
- Install the required packages:
pip install -r requirements.txt
Simply run the script with your AWS Credentials:
python s3_sentinel.py -p <AWS_PROFILE> | -a <AWS_ACCESS_KEY_ID> -s <AWS_SECRET_ACCESS_KEY> [-t <AWS_SESSION_TOKEN>] [-m <MAX_OBJECTS>]π Don't forget to replace <AWS_PROFILE> or <AWS_ACCESS_KEY_ID>, <AWS_SECRET_ACCESS_KEY>, and <AWS_SESSION_TOKEN> with your actual AWS credentials.
[1 / 1] Bucket: BUCKET_NAME
- Bucket Status: Unknown
- Public via ACL: False
- Public via Policy: False
- Access Block Set: False
- Exceeded Object Threshold: False (1/400)
- Public Objects: 1
- PUBLIC_OBJECT_NAME.TXT
{
"BUCKET_NAME": {
"bucket_status": "Unknown",
"total_objects": 1,
"max_objects_scanned": 400,
"total_public_objects": 1,
"public_objects": ["PUBLIC_OBJECT_NAME.TXT"],
"public_via_acl": false,
"public_via_policy": false,
"access_block": false
}
}Contributions are what make the open-source community such an amazing place to learn, inspire, and create. Any contributions you make are greatly appreciated.
1. Fork the Project
2. Create your Feature Branch (git checkout -b feature/AmazingFeature)
3. Commit your Changes (git commit -m 'Add some AmazingFeature')
4. Push to the Branch (git push origin feature/AmazingFeature)
5. Open a Pull Request
Distributed under the MIT License. See LICENSE for more information.
If you find S3Sentinel helpful, consider supporting my work! Whether it's a cup of coffee or just a small token of appreciation, your support means a lot and helps me continue developing and improving tools like this.
Click the image above to buy me a coffee. Thank you for your support! π
Disclaimer: S3Sentinel ("the tool") is provided as-is without any guarantees or warranty. While the tool is developed with a focus on safety and accuracy, users are advised to use it at their own risk. The author of the tool, is not responsible for any direct, indirect, incidental, consequential, or any other damages arising out of the use of the tool, including data loss or corruption, or any consequences incurred by relying on the toolβs output. Users are encouraged to independently verify the tool's findings for accuracy and completeness. The tool is not intended to replace professional advice or custom security solutions tailored to specific circumstances.