CloudFox
AWS and Azure enumeration and privilege escalation tool
Cloud & Assets6 commands
#cloud#aws#azure#enumeration
Installation
1Install using Go
2Configure cloud credentials
3Verify installation
# Using Go
go install github.com/BishopFox/cloudfox@latest
# Configure AWS credentials
aws configure
# Verify
cloudfox --helpBasic Usage
Enumerate cloud resources and find attack paths
# AWS - All checks
cloudfox aws --profile victim all-checks
# Specific commands
cloudfox aws principals
cloudfox aws permissions
cloudfox aws secrets
# Azure
cloudfox azure --tenant xxx all-checksCommand Reference
6 commands
1Run all enumeration
all-checks2List IAM principals
principals3Check permissions
permissions4Find secrets
secrets5List EC2 instances
instances6AWS profile to use
--profileWhen to Use
1
Cloud security assessments2
Post-compromise enumeration3
Privilege escalation research4
Finding misconfigurationsNotes & Tips
1
Requires valid cloud credentials2
Results saved to loot directory3
Use with proper authorizationCommon Errors & Solutions
Invalid credentials
Check AWS/Azure credential configuration
Access denied
Credentials may lack required permissions