s3scanner
« Back to VersTracker
Description:
Scan for misconfigured S3 buckets across S3-compatible APIs!
Type: Formula  |  Tracked Since: Dec 28, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: security s3 cloud scanner pentesting
Install: brew install s3scanner
About:
S3scanner is a command-line tool designed to identify misconfigured or publicly accessible Amazon S3 buckets and other S3-compatible storage services. It automates the process of checking bucket permissions to detect security vulnerabilities like open access or unauthorized listing. This helps security professionals and developers proactively secure their cloud storage infrastructure against data leaks.
Key Features:
  • Supports multiple S3-compatible APIs including AWS, DigitalOcean, and Wasabi
  • Automates detection of open buckets and permission misconfigurations
  • Can read targets from files for efficient bulk scanning
  • Provides options to save found buckets to a file for reporting
Use Cases:
  • Penetration testing engagements to identify cloud storage vulnerabilities
  • Auditing an organization's own cloud assets for accidental public exposure
  • Red team operations to find exposed sensitive data
Alternatives:
  • AWSBucketDump – Similar functionality focused on AWS, but S3scanner offers broader S3-compatible API support.
  • S3Cruiser – Another tool for bucket enumeration, with a focus on different enumeration techniques.
Version History
Detected Version Rev Change Commit
Sep 16, 2025 12:59am 0 VERSION_BUMP 610d66ee
Sep 17, 2024 3:47am 0 VERSION_BUMP 104fdfb7
Sep 14, 2024 3:49pm 0 VERSION_BUMP 0c0b5c76
« Back to VersTracker  |  Browse Packages  |  About