cloudfox
« Back to VersTracker
Description:
Automating situational awareness for cloud penetration tests
Type: Formula  |  Latest Version: 1.17.0@0  |  Tracked Since: Dec 17, 2025
Links: Homepage  |  GitHub  |  Docs  |  formulae.brew.sh
Stars: 2,261  |  Forks: 214  |  Language: Go  |  Category: Security
Tags: security cloud pentesting reconnaissance aws azure
Install: brew install cloudfox
About:
CloudFox is an open-source reconnaissance tool designed for cloud penetration testing and security assessments. It automates the enumeration of resources and identification of attack paths across AWS, Azure, and GCP environments. Its primary value is providing situational awareness by mapping out potential security weaknesses and misconfigurations in cloud infrastructure.
Key Features:
  • Multi-cloud support for AWS, Azure, and Google Cloud Platform
  • Automated enumeration of resources, permissions, and attack paths
  • Modular design allowing for targeted reconnaissance commands
  • Lightweight, single-binary tool written in Go
  • Outputs findings in various formats including text and JSON
Use Cases:
  • Cloud penetration testing and red team exercises
  • Security posture assessment and compliance auditing of cloud environments
  • Identifying misconfigurations and excessive permissions in IAM and storage services
Alternatives:
  • ScoutSuite – More focused on compliance auditing and security best practices, while CloudFox emphasizes attack path discovery for pentesters.
  • Pacu – AWS-specific exploitation framework, whereas CloudFox is a multi-cloud reconnaissance tool focused on enumeration.
Version History
Detected Version Rev Change Commit
Dec 25, 2025 3:47pm 1.17.0 0 VERSION_BUMP eba30fa3
Dec 17, 2025 3:16pm 1.15.0 0 VERSION_BUMP 90b9b7ec
Oct 10, 2025 12:05pm 0 VERSION_BUMP 5a0b678f
Sep 12, 2025 8:33pm 0 VERSION_BUMP efe8269f