search

duo-labs / cloudmapper

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
BSD 3-Clause "New" or "Revised" License
6.01k stars 810 forks source link

Need method for auditing domains #185

Closed 0xdabbad00 closed 5 years ago

0xdabbad00 commented 6 years ago

Given route53 data for an account, need to be able to check the sub-domains to see if they point to things like non-existant buckets, which allow for easy sub-domain takeover. The page response looks like:

<Error>
<Code>NoSuchBucket</Code>
<Message>The specified bucket does not exist</Message>
....

I don't think CloudMapper should be responsible for looking for these things, as I don't know if the AWS data gives any insight that is helpful for this problem, but I should advise on what to do and maybe make a simple command to just extract out all of the subdomains for an account.

FernandoMiguel commented 6 years ago

Keep in mind a user can create multiple DNS zones with DNS records that are not actually glued to a domain

0xdabbad00 commented 5 years ago

I'm closing this as out of scope for CloudMapper at this time.