This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

OWASP Cloud Testing Guide Table of Contents

Revision as of 11:34, 13 March 2019 by Mmeucci (talk | contribs) (1)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Here is the draft index:

Amazon AWS

- Testing S3 buckets -- Identify S3 buckets -- Testing listing bucket's content -- Testing for writing privileges on bucket -- Testing if bucket ACL can be read -- Testing if bucket ACL can be written -- Testing for "any authenticated AWS client" -- Leaked AWS S3 key secret -- References

- Testing Amazon EC2 -- Publicly accessible EC2 snapshots -- AWS Metadata leakage -- AWS Elastic Load Balancer -- AWS SNS -- AWS SQS -- AWS RDS -- AWS Cognito -- AWS CloudFront -- AWS-CLI tiny man -- Tools

Google Cloud -- Doc -- Tools