search

Eilonh / s3crets_scanner

567 stars 65 forks source link

Possibility to scan certain public buckets #12

Open eliteaz opened 1 year ago

eliteaz commented 1 year ago

I tried this tool and it works perfectly, see that permissions only should be for * Resources

....
....
        {
            "Sid": "VisualEditor1",
            "Effect": "Allow",
            "Action": "s3:ListAllMyBuckets",
            "Resource": "*"
        }

when I set a suitable resource I get an exception get_all_buckets exception raised on adv-vod -> An error occurred (AccessDenied) when calling the ListBuckets operation: Access Denied https://github.com/Eilonh/s3crets_scanner/blob/540327b3a9178ac3860b6dee2492e012bd246a40/aws.py#L78

Is there any possibility to list only certain "Resources" ?