GET PAID

banner

$1,000,000 CHALLENGE

banner

BUY OR SELL LIBERTY RESERVE

Naira4Dollar

Tuesday, August 25, 2020

CloudFrunt - A Tool For Identifying Misconfigured CloudFront Domains


CloudFrunt is a tool for identifying misconfigured CloudFront domains.

Background
CloudFront is a Content Delivery Network (CDN) provided by Amazon Web Services (AWS). CloudFront users create "distributions" that serve content from specific sources (an S3 bucket, for example).
Each CloudFront distribution has a unique endpoint for users to point their DNS records to (ex. d111111abcdef8.cloudfront.net). All of the domains using a specific distribution need to be listed in the "Alternate Domain Names (CNAMEs)" field in the options for that distribution.
When a CloudFront endpoint receives a request, it does NOT automatically serve content from the corresponding distribution. Instead, CloudFront uses the HOST header of the request to determine which distribution to use. This means two things:

  1. If the HOST header does not match an entry in the "Alternate Domain Names (CNAMEs)" field of the intended distribution, the request will fail.
  2. Any other distribution that contains the specific domain in the HOST header will receive the request and respond to it normally.
This is what allows the domains to be hijacked. There are many cases where a CloudFront user fails to list all the necessary domains that might be received in the HOST header. For example:
  • The domain "test.disloops.com" is a CNAME record that points to "disloops.com".
  • The "disloops.com" domain is set up to use a CloudFront distribution.
  • Because "test.disloops.com" was not added to the "Alternate Domain Names (CNAMEs)" field for the distribution, requests to "test.disloops.com" will fail.
  • Another user can create a CloudFront distribution and add "test.disloops.com" to the "Alternate Domain Names (CNAMEs)" field to hijack the domain.
This means that the unique endpoint that CloudFront binds to a single distribution is effectively meaningless. A request to one specific CloudFront subdomain is not limited to the distribution it is associated with.

Installation
$ pip install boto3
$ pip install netaddr
$ pip install dnspython
$ git clone https://github.com/disloops/cloudfrunt.git
$ cd cloudfrunt
$ git clone https://github.com/darkoperator/dnsrecon.git
CloudFrunt expects the dnsrecon script to be cloned into a subdirectory called dnsrecon.

Usage
cloudfrunt.py [-h] [-l TARGET_FILE] [-d DOMAINS] [-o ORIGIN] [-i ORIGIN_ID] [-s] [-N]

-h, --help                      Show this message and exit
-s, --save                      Save the results to results.txt
-N, --no-dns                    Do not use dnsrecon to expand scope
-l, --target-file TARGET_FILE   File containing a list of domains (one per line)
-d, --domains DOMAINS           Comma-separated list of domains to scan
-o, --origin ORIGIN             Add vulnerable domains to new distributions with this origin
-i, --origin-id ORIGIN_ID       The origin ID to use with new distributions

Example
$ python cloudfrunt.py -o cloudfrunt.com.s3-website-us-east-1.amazonaws.com -i S3-cloudfrunt -l list.txt

 CloudFrunt v1.0.3

 [+] Enumerating DNS entries for google.com
 [-] No issues found for google.com

 [+] Enumerating DNS entries for disloops.com
 [+] Found CloudFront domain --> cdn.disloops.com
 [+] Found CloudFront domain --> test.disloops.com
 [-] Potentially misconfigured CloudFront domains:
 [#] --> test.disloops.com
 [+] Created new CloudFront distribution EXBC12DE3F45G
 [+] Added test.disloops.com to CloudFront distribution EXBC12DE3F45G


Related links


  1. Hacker Tools Linux
  2. Pentest Tools For Mac
  3. Hacker Tools Github
  4. Hack Tools Github
  5. New Hacker Tools
  6. Hack Rom Tools
  7. Hacking Tools 2019
  8. Hacker Tools List
  9. Wifi Hacker Tools For Windows
  10. Wifi Hacker Tools For Windows
  11. Hacker Tools List
  12. Hacker Tools Software
  13. Hacking Tools 2020
  14. Hack Tools For Windows
  15. Hack Apps
  16. Hacker Tools Windows
  17. Kik Hack Tools
  18. Hacker Tools For Windows
  19. Pentest Tools Nmap
  20. Hack Rom Tools
  21. Hacking Apps
  22. Hacker Tools Free Download
  23. Hack Tools For Ubuntu
  24. Physical Pentest Tools
  25. Hak5 Tools
  26. Hacking Tools Windows 10
  27. What Is Hacking Tools
  28. Pentest Tools Free
  29. Pentest Box Tools Download
  30. Hack Tools Mac
  31. Hacker Tools For Mac
  32. Hacker Tools Free Download
  33. Hack Apps
  34. Pentest Tools Review
  35. Hacker Tools Online
  36. Hacks And Tools
  37. Hacker Hardware Tools
  38. Blackhat Hacker Tools
  39. Hacking Tools Hardware
  40. Pentest Tools List
  41. Pentest Tools Kali Linux
  42. Hack Tools For Ubuntu
  43. Pentest Tools For Windows
  44. Easy Hack Tools
  45. World No 1 Hacker Software
  46. Hacker Tools Software
  47. Hack Tools Online
  48. Hack Tools For Pc
  49. Pentest Reporting Tools
  50. Pentest Tools Website Vulnerability
  51. Pentest Tools Website
  52. Hacker Techniques Tools And Incident Handling
  53. Pentest Tools
  54. Pentest Tools List
  55. Pentest Tools Framework
  56. Hacking Tools Software
  57. Tools For Hacker
  58. Best Hacking Tools 2020
  59. How To Hack
  60. Game Hacking
  61. Pentest Tools For Android
  62. Hacker Tools Windows
  63. Pentest Tools Framework
  64. Hacker Tools Online
  65. Best Hacking Tools 2019
  66. Hacker Tools List
  67. Hacking Tools
  68. Hacking Tools Usb
  69. Hacker Tool Kit
  70. Hack Tool Apk No Root
  71. Hack Tools Online
  72. Pentest Tools Open Source
  73. Easy Hack Tools
  74. Hacking Tools 2020
  75. Pentest Tools For Ubuntu
  76. Physical Pentest Tools
  77. Pentest Tools Nmap
  78. Pentest Tools Find Subdomains
  79. Hack Rom Tools
  80. Hacker Tools Mac
  81. Hacker
  82. Hack And Tools
  83. Pentest Tools Download
  84. Hacker Search Tools
  85. Pentest Tools Linux
  86. Hacking Tools For Games
  87. Pentest Tools Nmap
  88. Pentest Tools Website
  89. Hacker
  90. Blackhat Hacker Tools
  91. Hack Tools Pc
  92. Pentest Tools
  93. Hacking Tools Mac
  94. Pentest Box Tools Download
  95. Hacking Tools For Windows Free Download
  96. Hack Tools Pc
  97. Hack Tools For Ubuntu
  98. Hack Website Online Tool
  99. Android Hack Tools Github
  100. Pentest Tools
  101. Pentest Tools Apk
  102. Usb Pentest Tools
  103. How To Make Hacking Tools
  104. Pentest Tools Framework
  105. Hacking Tools 2019
  106. Game Hacking
  107. Hacking Tools Software
  108. What Is Hacking Tools
  109. Hacker Tools Mac
  110. Android Hack Tools Github
  111. Pentest Tools Website
  112. Beginner Hacker Tools
  113. Hacker Tools Free Download
  114. New Hack Tools
  115. Pentest Tools Nmap
  116. Hacker Tools Hardware
  117. Hacking Tools For Kali Linux
  118. Hacker Tools List
  119. Hacking Tools Online
  120. Hacker Tools For Mac
  121. Easy Hack Tools
  122. Usb Pentest Tools
  123. Easy Hack Tools
  124. Hack Tools Online
  125. Hacker Search Tools
  126. Pentest Tools Url Fuzzer
  127. Hacking Tools Download
  128. Hack Tools For Pc
  129. Hack Tools Pc
  130. Pentest Reporting Tools
  131. Hacking Tools Windows
  132. Hack Tools Mac
  133. Tools Used For Hacking
  134. Github Hacking Tools
  135. Pentest Tools
  136. Pentest Tools For Ubuntu
  137. Hacking Tools For Windows
  138. Beginner Hacker Tools
  139. Pentest Tools Windows
  140. Hack Tools Online
  141. Usb Pentest Tools
  142. Hacking Tools For Kali Linux
  143. Pentest Tools Apk
  144. Best Pentesting Tools 2018
  145. Usb Pentest Tools
  146. Hacking Tools Kit
  147. Hacking Tools Software
  148. Hack Tools For Windows
  149. Pentest Tools For Android
  150. Install Pentest Tools Ubuntu
  151. Hacking Tools And Software
  152. Pentest Tools Kali Linux
  153. Best Pentesting Tools 2018
  154. Tools Used For Hacking
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

WE BUY YOUR LIBERTY RESERVE AND DEPOSIT DIRECTLY INTO YOUR BANK ACCOUNT(NO STORIES)

Naira4Dollar