Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add support for the amazon_s3_takeover test type #151

Closed
derevnjuk opened this issue Apr 11, 2023 · 0 comments · Fixed by #152
Closed

Add support for the amazon_s3_takeover test type #151

derevnjuk opened this issue Apr 11, 2023 · 0 comments · Fixed by #152
Assignees
Labels
Type: enhancement New feature or request.

Comments

@derevnjuk
Copy link
Member

Add support for the amazon_s3_takeover test type to enable the "Amazon AWS S3 bucket takeover" vulnerability scan.

To run this test, it should be possible to use the following code snippet:

[Fact]
public async Task Get_Users_ShouldNotContainLinkToMissingAWSS3Bucket()
{
  var target = new Target($"{_fixture.Url}/Users")
    .WithMethod(HttpMethod.Get);

  var builder = new ScanSettingsBuilder()
    .WithName(nameof(Get_Users_ShouldNotContainLinkToMissingAWSS3Bucket))
    .WithTests(new List<TestType> { TestType.AmazonS3Takeover });

  await _runner
    .CreateScan(builder)
    .Run(target);
}

If the page's body contains a link that points to a 404 resource with the following content:

Code: NoSuchBucket
Message: The specified bucket does not exist
BucketName: cdn.example.com

it indicates that there is a vulnerability.

Please see the following references for more information on this vulnerability:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Type: enhancement New feature or request.
Projects
None yet
Development

Successfully merging a pull request may close this issue.

1 participant