Difference between revisions of "OWASP Cloud Testing Guide Table of Contents"
From OWASP
(1) |
(1) |
||
| Line 2: | Line 2: | ||
Amazon AWS | Amazon AWS | ||
| + | <br> | ||
| + | - Testing S3 buckets <br> | ||
| + | -- Identify S3 buckets <br> | ||
| + | -- Testing listing bucket's content <br> | ||
| + | -- Testing for writing privileges on bucket <br> | ||
| + | -- Testing if bucket ACL can be read <br> | ||
| + | -- Testing if bucket ACL can be written <br> | ||
| + | -- Testing for "any authenticated AWS client" <br> | ||
| + | -- Leaked AWS S3 key secret <br> | ||
| + | -- References <br> | ||
| − | + | - Testing Amazon EC2 <br> | |
| − | + | -- Publicly accessible EC2 snapshots <br> | |
| − | + | -- AWS Metadata leakage <br> | |
| − | + | -- AWS Elastic Load Balancer <br> | |
| − | + | -- AWS SNS <br> | |
| − | + | -- AWS SQS <br> | |
| − | + | -- AWS RDS <br> | |
| − | + | -- AWS Cognito <br> | |
| − | + | -- AWS CloudFront <br> | |
| − | + | -- AWS-CLI tiny man <br> | |
| − | - Testing Amazon EC2 | + | -- Tools <br> |
| − | -- Publicly accessible EC2 snapshots | + | <br> |
| − | -- AWS Metadata leakage | + | Google Cloud<br> |
| − | -- AWS Elastic Load Balancer | + | -- Doc <br> |
| − | -- AWS SNS | + | -- Tools <br> |
| − | -- AWS SQS | ||
| − | -- AWS RDS | ||
| − | -- AWS Cognito | ||
| − | -- AWS CloudFront | ||
| − | -- AWS-CLI tiny man | ||
| − | -- Tools | ||
| − | |||
| − | Google Cloud | ||
| − | -- Doc | ||
| − | -- Tools | ||
Revision as of 12:13, 13 March 2019
Here is the draft index:
Amazon AWS
- Testing S3 buckets
-- Identify S3 buckets
-- Testing listing bucket's content
-- Testing for writing privileges on bucket
-- Testing if bucket ACL can be read
-- Testing if bucket ACL can be written
-- Testing for "any authenticated AWS client"
-- Leaked AWS S3 key secret
-- References
- Testing Amazon EC2
-- Publicly accessible EC2 snapshots
-- AWS Metadata leakage
-- AWS Elastic Load Balancer
-- AWS SNS
-- AWS SQS
-- AWS RDS
-- AWS Cognito
-- AWS CloudFront
-- AWS-CLI tiny man
-- Tools
Google Cloud
-- Doc
-- Tools
