Mapping your AWS attack surface

Cloud Computing Domain Name Registrar Monitoring Tools

Steampipe Landing Page
1

Steampipe

Steampipe: select * from cloud; The extensible SQL interface to your favorite cloud APIs select * from AWS, Azure, GCP, Github, Slack etc.
Pricing:
- Open Source
An Organization must monitor and understand the network perimeter of their cloud estate. Resources comprising the externally facing network components of your cloud attack surface can be broadly grouped into IP addresses, hostnames, and URLs. In this blog post, we will provide step-by-step instructions for mapping the network aspects of the cloud attack surface using Steampipe.

#Big Data #Databases #Big Data Analytics 41 social mentions
Nmap Landing Page

2

Nmap

Nmap Free Security Scanner, Port Scanner, & Network Exploration Tool. Download open source software for Linux, Windows, UNIX, FreeBSD, etc.

Review the list of IP addresses returned, and if permitted by the terms of service, scan these hostnames for exposed ports and services using nmap or Nessus.

#Security #Security Monitoring #Monitoring Tools 200 social mentions
Amazon S3 Landing Page

3

Amazon S3

Amazon S3 is an object storage where users can store data from their business on a safe, cloud-based platform. Amazon S3 operates in 54 availability zones within 18 graphic regions and 1 local region.

A number of AWS services, including CloudFront, S3, API Gateway, and AWS Lambda, produce URLs that can be vulnerable. For example, S3 Buckets exist as URLs on the public internet and can be accessed if the bucket is not properly secured. To get a list of all of the URLs for the public buckets in your cloud environment, you can use this query:.

#Cloud Hosting #Object Storage #Cloud Storage 196 social mentions
Amazon Route 53 Landing Page

4

Amazon Route 53

Amazon Route 53 is a highly available and scalable DNS web service.

To determine the DNS Hostnames used as part of your cloud perimeter, Steampipe can query all of the A records and CNAMEs in your Route 53 Hosted Zones. A records point directly to IP addresses under your control. CNAMEs are references that can point to hosts or other cloud-provider-managed resources. In either case, you need to understand what exists in your environment.

#Cloud Computing #Domain Name Registrar #Domain Names 48 social mentions
Amazon CloudFront Landing Page

5

Amazon CloudFront

Amazon CloudFront is a content delivery web service.

A number of AWS services, including CloudFront, S3, API Gateway, and AWS Lambda, produce URLs that can be vulnerable. For example, S3 Buckets exist as URLs on the public internet and can be accessed if the bucket is not properly secured. To get a list of all of the URLs for the public buckets in your cloud environment, you can use this query:.

#CDN #Cloud Computing #Content Distribution 78 social mentions
AWS Certificate Manager Landing Page

6

AWS Certificate Manager

AWS Certificate Manager from Amazon Web Services (AWS)

Note: The above query excludes private DNS for VPCs z.private_zone=false and excludes common CNAMEs needed for ACM and email validation.

#Identity And Access Management #Two Factor Authentication #Network & Admin 24 social mentions
Amazon API Gateway Landing Page

7

Amazon API Gateway

Create, publish, maintain, monitor, and secure APIs at any scale

A number of AWS services, including CloudFront, S3, API Gateway, and AWS Lambda, produce URLs that can be vulnerable. For example, S3 Buckets exist as URLs on the public internet and can be accessed if the bucket is not properly secured. To get a list of all of the URLs for the public buckets in your cloud environment, you can use this query:.

#API Tools #APIs #Web Service Automation 107 social mentions