Open Source Security Tool
s3finder
AI-powered S3 bucket enumeration tool for security researchers and penetration testers. Discover misconfigured buckets with intelligent name generation.
Legal Notice: This tool is intended for authorized security testing only. Only scan buckets belonging to organizations you have explicit permission to test.
Key Features
High-Concurrency
Worker pool architecture handles thousands of requests with adaptive rate limiting.
CT Log Recon
Discover subdomains via CT logs (crt.sh) with automatic word extraction for deeper scanning.
AI-Powered
OpenAI, Ollama, Anthropic, or Gemini generate context-aware bucket name variations.
Permutation Engine
780+ automatic variations per seed including suffixes, prefixes, and regions.
Deep Inspection
AWS SDK reveals region, ACL status, and sample objects from discovered buckets.
Cross-Platform
Native binaries for Linux, macOS, and Windows on both AMD64 and ARM64.
Multiple Outputs
Export results as JSON or plain text with real-time terminal display.
Quick Example
CLI Usage
bash
# Basic scan with permutations of a seed
s3finder -s acme-corp
# Scan using ONLY a wordlist (no permutations)
s3finder -w wordlist.txt
# Scan using ONLY a domain (CT log discovery)
s3finder -d acme.com
# Combined independent sources
s3finder -s acme -w custom.txt -d acme.comSample Output
text
[PUBLIC] acme-corp-backup (objects: 1547, region: us-east-1)
https://acme-corp-backup.s3.amazonaws.com
[PRIVATE] acme-corp-internal (region: eu-west-1)
[PUBLIC] acme-corp-assets-2024 (objects: 100+, region: us-west-2)
https://acme-corp-assets-2024.s3.amazonaws.com
[██████████████████████████████] 100.0% [828/828] Public:2 Private:1 Err:0 145 r/s ETA:0s [2m34s]
────────────────────────────────────────
Scan completed in 2m34s
Scanned: 828 | Found: 3 | Public: 2 | Private: 1 | Errors: 0Supported Platforms
| Platform | Architecture | Status |
|---|---|---|
| Linux | amd64 | Supported |
| Linux | arm64 | Supported |
| macOS | Intel (amd64) | Supported |
| macOS | Apple Silicon | Supported |
| Windows | amd64 | Supported |
| Windows | arm64 | Supported |