Information Gatheringosintcloudawsazuregcpenumerationpentest

cloud-enum

Multi-cloud open source intelligence tool that enumerates public resources matching user-requested keywords across AWS, Azure, and Google Cloud Platform. Useful for penetration testing and network security analysis.

Description

cloud-enum is a multi-cloud enumeration utility designed to identify publicly accessible resources in major cloud providers using specified keywords. It targets open and protected S3 buckets in AWS, storage accounts, blob containers, databases, VMs, and web apps in Azure, and open/protected buckets plus App Engine sites in GCP.

This tool serves as an OSINT resource for penetration testing (PENTEST) and network security analysis, helping security professionals discover exposed cloud assets during reconnaissance phases.

By leveraging keyword-based searches and mutations, it automates the detection of potentially sensitive or misconfigured cloud resources across providers.

How It Works

cloud_enum performs enumeration by querying public cloud service endpoints and DNS records for resources matching provided keywords or mutations. It uses threaded operations to check for open/protected buckets, storage accounts, blob containers, databases, VMs, web apps, and App Engine sites across AWS, Azure, and GCP, relying on dependencies like dnspython for DNS resolution and requests for HTTP probing.

Installation

bash

sudo apt install cloud-enum

Flags

-h, --helpshow this help message and exit

-k, --keyword KEYWORDKeyword. Can use argument multiple times.

-kf, --keyfile KEYFILEInput file with a single keyword per line.

-m, --mutations MUTATIONSMutations. Default: /usr/lib/cloud-enum/enum_tools/fuzz.txt

-b, --bruteBrute force mode (implied from usage)

-t, --threads THREADSNumber of threads

-ns, --nameserver NAMESERVERCustom nameserver

-l, --logfile LOGFILELog file output

-f, --format FORMATOutput format

--disable-awsDisable AWS enumeration

--disable-azureDisable Azure enumeration

--disable-gcpDisable GCP enumeration

-qsQuiet mode (implied from usage)

Examples

Show the help message and usage information.

cloud_enum -h

Enumerate public cloud resources matching the keyword 'examplekeyword'.

cloud_enum -k examplekeyword

Enumerate using multiple keywords simultaneously.

cloud_enum -k keyword1 -k keyword2

Read keywords from a file with one per line for enumeration.

cloud_enum -kf keywords.txt

Use custom mutations file with keyword for fuzzing.

cloud_enum -k keyword -m /path/to/mutations.txt

Run enumeration with 50 threads for faster processing.

cloud_enum -k keyword -t 50

Enumerate only Azure and GCP, skipping AWS.

cloud_enum -k keyword --disable-aws

Updated 2026-04-16kali.org ↗