🌩️
Cloud Security

CloudMapper

A useful tool for examining Amazon Web Services (AWS) infrastructures is called CloudMapper. CloudMapper currently supports a wide range of functions, including audits for security concerns. It was first developed for creating network diagrams. Although the network visualisation functionality (command prepare) is no longer supported, the tool is still developing and getting new capabilities.

Tool Source

CloudMapper is a potent tool crafted for the examination of Amazon Web Services (AWS) environments. Initially developed to produce network diagrams, CloudMapper has since expanded its capabilities to include security audits. Although the network visualization function (command prepare) is no longer actively maintained, the tool is continuously being enhanced with additional features.

Features

  1. audit: Look for any possible setup errors.
  2. collect: Collect metadata about an AWS account.
  3. find_admins: Identify admin users and roles, or principals with specific privileges in     IAM policies.
  4. find_unused: Examine the account for any underutilised resources. (e.g., Security Groups, Elastic     IPs, network interfaces, volumes, and elastic load balancers).
  5. prepare/webserver:  Examine the account for any underutilised resources.
  6. public: Find public hosts and port ranges.
  7. sg_ips:  Get geoip info on CIDRs trusted in Security Groups.
  8. stats: Show counts of resources for accounts.
  9. weboftrust: Show Web Of Trust.
  10. report:  Generate HTML report, including a summary of accounts and audit findings.
  11. iam_report: Generate HTML report for IAM information of an account.

Installation

Run with Demo Data

View the network map at http://127.0.0.1:8000/ and the report at http://127.0.0.1:8000/account-data/report.html.

Screenshots

Table of Contents:

Navigation

HomeTools

Services by CQR

Penetration Testing
Social Engineering
OSINT Recon
Vulnerability Assessment
Automotive Penetration Testing
DevSecOps
Smart Contract Audit
Incident Response
SOC Services
Risk Assessment
API Penetration Testing
Active Directory Audit
Fuzz Testing
Security Code Review
NOC Service
Forensics
Reverse Engineering

Related Posts

OSINT Recon: what is open source inteligence

October 2, 2023

Explore Tools Categories

🔎

Osint

🎩

Brute-force

🥷

Active directory

📵

Wireless security

🌩️

Cloud Security

🧩

Network assessment

🕸️

Web vulnerability detection

📝

Information Gathering Tools

📶

Wireless Attacks

💫

Vulnerability Analysis

⚗️

Forensics Tools

⚠️

Stress Testing

👓

Sniffing & Spoofing

Tools