🌩️
Cloud Security

BlobHunter

An open-source programme called BlobHunter is used to search Azure blob storage accounts for publicly available blobs. BlobHunter, a vital tool for locating improperly configured containers hosting sensitive data within Azure subscriptions, was created as a component of the "Hunting Azure Blobs Exposes Millions of SensitiveFiles" investigation.

Tool Source

BlobHunter is an open-source utility created to scan Azure blob storage accounts and pinpoint publicly accessible blobs. It was developed in conjunction with the "Hunting Azure Blobs Exposes Millions of Sensitive Files" research project and serves as a vital instrument for detecting inadequately configured containers that house sensitive data in Azure subscriptions.

Requirements

  • Python     3.5+
  • Azure     CLI
  • Packages     listed in requirements.txt
  • Azure     user with one of the following built-in roles:
     
  • Owner
    •  
  • Contributor
    •  
  • Storage      Account Contributor
    •  
  • Or      any Azure user with a role allowing specific Azure actions.

Installation

Usage

Run the tool with:

Demo

Full Demo

Table of Contents:

Navigation

HomeTools

Services by CQR

Penetration Testing
Social Engineering
OSINT Recon
Vulnerability Assessment
Automotive Penetration Testing
DevSecOps
Smart Contract Audit
Incident Response
SOC Services
Risk Assessment
API Penetration Testing
Active Directory Audit
Fuzz Testing
Security Code Review
NOC Service
Forensics
Reverse Engineering

Related Posts

OSINT Recon: what is open source inteligence

October 2, 2023

Explore Tools Categories

🔎

Osint

🎩

Brute-force

🥷

Active directory

📵

Wireless security

🌩️

Cloud Security

🧩

Network assessment

🕸️

Web vulnerability detection

📝

Information Gathering Tools

📶

Wireless Attacks

💫

Vulnerability Analysis

⚗️

Forensics Tools

⚠️

Stress Testing

👓

Sniffing & Spoofing

Tools