Recon

>_Cloud Enum

Multi-cloud asset enumeration for AWS, GCP, and Azure. Discovers exposed S3 buckets, public function endpoints, and misconfigured IAM.

View Source

Key Features

S3 Bucket Discovery: Enumerate public and private S3 buckets using permutation wordlists
IAM Policy Analysis: Parse exported IAM policies to identify overpermissioned roles
Serverless Endpoint Discovery: Find exposed Lambda, Cloud Functions, and Azure Functions URLs
Storage Account Enumeration: Azure Blob, GCS Buckets with anonymous read detection

Example Usage

$odivex-tools cloud --provider aws --org acmecorp

$odivex-tools cloud --provider gcp --project my-project --enumerate storage

$odivex-tools cloud --provider azure --tenant myorg.onmicrosoft.com

Setup

Install via the OdiVex CLI framework:

pip install odivex-tools

Why Cloud Enumeration Matters

Cloud misconfigurations are now the leading cause of data breaches. An exposed S3 bucket, an overpermissioned service account, or a publicly accessible Lambda function can expose your entire data estate. Cloud Enum makes finding these issues fast and systematic.

AWS Enumeration

# Enumerate all S3 buckets variation for "acmecorp"
odivex-tools cloud --provider aws --org acmecorp --enumerate s3

# Analyze IAM policy files for risky permissions
odivex-tools cloud --provider aws --analyze-policy policy.json

Output

All results are JSON with severity ratings:

{
  "provider": "aws",
  "findings": [
    {
      "type": "s3_public_bucket",
      "resource": "acmecorp-backups",
      "severity": "Critical",
      "detail": "Public read access enabled on bucket containing database dumps"
    }
  ]
}

Related Intelligence

Further exploration based on cross-referenced content.

services

Cloud Security Review

Detailed configuration review of your AWS, Azure, or GCP environments to identify misconfigurations and identity access issues.

January 1, 2026

blog

The Future of Zero-Trust Networks - OdiVex

Why perimeter defense is dead, and how continuous authentication is fundamentally changing enterprise infrastructure security.

April 17, 2026

tools

SSRF Probe

Automated Server-Side Request Forgery detection and exploitation tool with cloud metadata endpoint testing built-in.

February 1, 2026

Back to Toolkit