From 5517df8abd183b06284899788619b645a0c23a71 Mon Sep 17 00:00:00 2001 From: Dhiyaneshwaran Date: Thu, 1 Sep 2022 00:20:49 +0530 Subject: [PATCH 1/2] Create aws-s3-explorer.yaml --- misconfiguration/aws-s3-explorer.yaml | 33 +++++++++++++++++++++++++++ 1 file changed, 33 insertions(+) create mode 100644 misconfiguration/aws-s3-explorer.yaml diff --git a/misconfiguration/aws-s3-explorer.yaml b/misconfiguration/aws-s3-explorer.yaml new file mode 100644 index 0000000000..4f0b2b2a7e --- /dev/null +++ b/misconfiguration/aws-s3-explorer.yaml @@ -0,0 +1,33 @@ +id: aws-s3-explorer + +info: + name: AWS S3 Explorer + author: DhiyaneshDk + severity: low + reference: + - https://www.exploit-db.com/ghdb/7967 + metadata: + verified: true + google-dork: inurl:s3.amazonaws.com intitle:"AWS S3 Explorer" + tags: aws,amazon + +requests: + - method: GET + path: + - "{{BaseURL}}/index.html" + + matchers-condition: and + matchers: + - type: word + words: + - 'AWS S3 Explorer' + condition: and + + - type: word + part: header + words: + - text/html + + - type: status + status: + - 200 From b7757f8294a44c4bb4b88d2e9dc8ca2203d89625 Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Thu, 1 Sep 2022 01:08:57 +0530 Subject: [PATCH 2/2] Update aws-s3-explorer.yaml --- misconfiguration/aws-s3-explorer.yaml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/misconfiguration/aws-s3-explorer.yaml b/misconfiguration/aws-s3-explorer.yaml index 4f0b2b2a7e..52eafdf43e 100644 --- a/misconfiguration/aws-s3-explorer.yaml +++ b/misconfiguration/aws-s3-explorer.yaml @@ -9,7 +9,7 @@ info: metadata: verified: true google-dork: inurl:s3.amazonaws.com intitle:"AWS S3 Explorer" - tags: aws,amazon + tags: misconfig,aws,amazon,s3 requests: - method: GET @@ -21,7 +21,6 @@ requests: - type: word words: - 'AWS S3 Explorer' - condition: and - type: word part: header