Tag: security

Written by randy.kahler

Making an Athena table from the SecLists repo

If you’re into web security, you have hopefully heard of SecLists. It’s an amazing repository of keywords, indicators, payloads, passwords and more. It’s great not just for SecOps, but also developers and QA who want to step up their security game. As part of a project I’m working on, I wanted to be able to […]

Written by randy.kahler

Detecting public-read S3 buckets

I’m kind of surprised I couldn’t easily find something like this elsewhere. After all the recent news about unsecured (or very poorly secured) AWS S3 buckets, I wanted to find a quick and easy way of checking my own buckets. Between the several AWS accounts I manage, there are hundreds. AWS sent out an email […]