Categories: Security newsTechnology

Buckhacker : search engine to find servers that can be hacked

BuckHacker: A search tool that allows you to search leaky Amazon Web Services servers

The lives of hackers has just been made a lot easier, thanks to a tool created by anonymous hackers that allows security researchers and cybercriminals to search for sensitive information stored in the cloud.

The tool called BuckHacker scans servers at Amazon Web Services (AWS), a popular cloud computing platform that offers compute power, database storage, content delivery and other functionality to governments, universities and private firms, among others.

“The purpose of the project is to increase the awareness on bucket security, too many companies was [sic] hit for having wrong permissions on buckets in the last years,” one of the anonymous developers of BuckHacker, told Motherboard in an email.

The search engine is specifically focused on Amazon’s Simple Storage Service (S3), and S3 servers known as “buckets”, which is the part of AWS that BuckHacker directly targets and accesses.

Users can search the hackable servers either by bucket name, which may include company or organization name, or filename. Basically, BuckHacker collects bucket names and index pages, breaks down the results and stores it in a database that can be searched by others. Besides returning results for exposed servers, it also returns the entries labeled “Access Denied” and “The specified deposit does not exist”.

“The project is still in a really super alpha stage (there are several bugs at the moment that we try to fix),” the BuckHacker developer added. “I was sharing the project privately with some friends but unfortunately then we go public before the time. Actually we are even thinking to shutdown it because is quite unstable.”

The search engine has now been taken offline, with the developers behind BuckHacker site saying on Twitter: “Sorry guys, we are going offline for maintenance. We went online with the alpha version too early.”

Amazon has yet to comment on the issue.

Source: Motherboard

Kavita Iyer

An individual, optimist, homemaker, foodie, a die hard cricket fan and most importantly one who believes in Being Human

Recent Posts

  • Alternatives
  • List

Terrarium TV Down- Best Alternatives To Watch Free Movies In 2018

Terrarium TV was perhaps the best app for watching free movies and TV shows. This free application was available on…

5 hours ago
  • Explanatory
  • Tips and Tricks

How to Login into Belkin Router (Working 2018)

Routers play a very crucial role in getting access to the internet. They act as a medium between the user…

6 hours ago
  • Laws and Legalities
  • News

Cloudflare requested to expose Showbox, YTS and Popcorn Time site operators

Movie studios obtain subpoena that orders Cloudflare to expose piracy site operators including Showbox, YTS and Popcorn Time site A group…

23 hours ago
  • Laws and Legalities
  • Security news

Mirai botnet masterminds helping FBI to avoid jail time

Mirai botnet creators avoid prison time by assisting FBI as part of their sentencing Remember the three young hackers who…

24 hours ago
  • leak
  • News

Winamp’s new beta version 5.8 leaks online

Winamp 5.8 beta leak surfaces on the web A beta version of the upcoming Winamp 5.8 has been leaked online…

2 days ago
  • Security news
  • Technology

Developer of Terrarium TV says he could hand over user info to authorities

Details of Terrarium TV users could be handed to authorities, developer says Terrarium TV had recently announced that it would be…

2 days ago