CloudFox helps you gain situational awareness in unfamiliar cloud environments. It’s an open source command line tool created to help penetration testers and other offensive security professionals find exploitable attack paths in cloud infrastructure.
CLOUDFOX UPDATE REQUIRED: (12/2025): If you are using
cloudfox, you need to use v1.17.0 or greater. All earlier versions stopped working after a format change in AWS's public service mapping file.
Overview
Join us on the RedSec discord server
CloudFox is modular (you can run one command at a time), but there is an aws all-checks command that will run the other aws commands for you with sane defaults:
cloudfox aws --profile [profile-name] all-checks

CloudFox was designed to be executed by a principal with limited read-only permissions, but it's purpose is to help you find attack paths that can be exploited in simulated compromise scenarios (aka, objective based penetration testing).
CloudFox can be used with "found" credentials, similar to how you would use weirdAAL or enumerate-iam. Checks that fail, do so silently, so any data returned means your "found" creds have the access needed to retrieve it.
For the full documentation please refer to our wiki.
| Provider | CloudFox Commands |
|---|---|
| AWS | 34 |
| Azure | 4 |
| GCP | 60 |
| Kubernetes | Support Planned |
Option 1: Download the latest binary release for your platform.
Option 2: If you use homebrew: brew install cloudfox
Option 3: Install Go, use go install github.com/BishopFox/cloudfox@latest to install from the remote source
Option 4: Developer mode:
Install Go, clone the CloudFox repository and compile from source
# git clone https://github.com/BishopFox/cloudfox.git
# cd ./cloudfox
# Make any changes necessary
# go build .
# ./cloudfox
Option 5: Testing a bug fix
git clone git@github.com:BishopFox/cloudfox.git
git checkout seth-dev
go build .
./cloudfox [rest of the command options]
-l flag or pass all stored profiles with the -a flag.SecurityAudit + CloudFox custom policy Additional policy notes (as of 09/2022):
| Policy | Notes |
|---|---|
| CloudFox custom policy | Has a complete list of every permission cloudfox uses and nothing else |
arn:aws:iam::aws:policy/SecurityAudit |
Covers most cloudfox checks but is missing newer services or permissions like apprunner:*, grafana:*, lambda:GetFunctionURL, lightsail:GetContainerServices |
arn:aws:iam::aws:policy/job-function/ViewOnlyAccess |
Covers most cloudfox checks but is missing newer services or permissions like AppRunner:*, grafana:*, lambda:GetFunctionURL, lightsail:GetContainerServices - and is also missing iam:SimulatePrincipalPolicy. |
arn:aws:iam::aws:policy/ReadOnlyAccess |
Only missing AppRunner, but also grants things like "s3:Get*" which can be overly permissive. |
arn:aws:iam::aws:policy/AdministratorAccess |
This will work just fine with CloudFox, but if you were handed this level of access as a penetration tester, that should probably be a finding in itself :) |
gcloud auth application-default login)Minimal Permissions (Single Project):
For basic enumeration of a single project, the roles/viewer role provides read access to most resources (includes logging, monitoring, and compute/network viewing).
Comprehensive Permissions (Organization-Wide):
For thorough security assessments across an entire organization:
| Scope | Role | Purpose |
|---|---|---|
| Organization | roles/resourcemanager.organizationViewer |
View organization structure and metadata |
| Organization | roles/iam.securityReviewer |
Review IAM policies across the organization |
| Organization | roles/cloudasset.viewer |
Query Cloud Asset Inventory for all resources |
| Organization | roles/cloudidentity.groupsViewer |
Enumerate Google Groups and memberships |
| Folder | roles/resourcemanager.folderViewer |
View folder hierarchy and metadata |
| Project | roles/viewer |
Read access to most project resources (includes logging.viewer, monitoring.viewer, compute.viewer) |
| Tooling Project | roles/serviceusage.serviceUsageAdmin |
(Optional) Manage API quotas for CloudFox operations |
Note: The basic
roles/viewerrole includes permissions fromroles/logging.viewer,roles/monitoring.viewer, androles/compute.networkViewer, so these don't need to be granted separately.
APIs must be enabled in each project you want to assess. GCP APIs are project-scoped.
| API | Service Name | Purpose |
|---|---|---|
| Cloud Identity API | cloudidentity.googleapis.com |
Group enumeration, inherited role analysis |
| Cloud Asset API | cloudasset.googleapis.com |
Cross-project resource discovery |
| Cloud Resource Manager API | cloudresourcemanager.googleapis.com |
Organization mapping, IAM enumeration |
| IAM API | iam.googleapis.com |
IAM analysis, privilege escalation detection |
| Compute Engine API | compute.googleapis.com |
Instance enumeration, network security |
| Secret Manager API | secretmanager.googleapis.com |
Secrets enumeration |
| Cloud Functions API | cloudfunctions.googleapis.com |
Serverless enumeration |
| Cloud Run API | run.googleapis.com |
Serverless enumeration |
| Kubernetes Engine API | container.googleapis.com |
Container security analysis |
| BigQuery API | bigquery.googleapis.com |
Data security analysis |
For detailed setup instructions, see the GCP Setup Guide.
| Provider | Command Name | Description |
|---|---|---|
| AWS | all-checks | Run all of the other commands using reasonable defaults. You'll still want to check out the non-default options of each command, but this is a great place to start. |
| AWS | access-keys | Lists active access keys for all users. Useful for cross referencing a key you found with which in-scope account it belongs to. |
| AWS | api-gw | Lists API gateway endpoints and gives you custom curl commands including API tokens if they are stored in metadata. |
| AWS | buckets | Lists the buckets in the account and gives you handy commands for inspecting them further. |
| AWS | cape | Enumerates cross-account privilege escalation paths. Requires pmapper to be run first |
| AWS | cloudformation | Lists the cloudformation stacks in the account. Generates loot file with stack details, stack parameters, and stack output - look for secrets. |
| AWS | codebuild | Enumerate CodeBuild projects |
| AWS | databases | Enumerate RDS databases. Get a loot file with connection strings. |
| AWS | ecr | List the most recently pushed image URI from all repositories. Use the loot file to pull selected images down with docker/nerdctl for inspection. |
| AWS | ecs-tasks | List all ecs tasks. This returns a list of ecs tasks and associated cluster, task definition, container instance, launch type, and associated IAM principal. |
| AWS | eks | List all EKS clusters, see if they expose their endpoint publicly, and check the associated IAM roles attached to reach cluster or node group. Generates a loot file with the aws eks udpate-kubeconfig command needed to connect to each cluster. |
| AWS | elastic-network-interfaces | List all eni information. This returns a list of eni ID, type, external IP, private IP, VPCID, attached instance and a description. |
| AWS | endpoints | Enumerates endpoints from various services. Scan these endpoints from both an internal and external position to look for things that don't require authentication, are misconfigured, etc. |
| AWS | env-vars | Grabs the environment variables from services that have them (App Runner, ECS, Lambda, Lightsail containers, Sagemaker are supported. If you find a sensitive secret, use cloudfox iam-simulator AND pmapper to see who has access to them. |
| AWS | filesystems | Enumerate the EFS and FSx filesystems that you might be able to mount without creds (if you have the right network access). For example, this is useful when you have ec:RunInstance but not iam:PassRole. |
| AWS | iam-simulator | Like pmapper, but uses the IAM policy simulator. It uses AWS's evaluation logic, but notably, it doesn't consider transitive access via privesc, which is why you should also always also use pmapper. |
| AWS | instances | Enumerates useful information for EC2 Instances in all regions like name, public/private IPs, and instance profiles. Generates loot files you can feed to nmap and other tools for service enumeration. |
| AWS | inventory | Gain a rough understanding of size of the account and preferred regions. |
| AWS | lambda | Lists the lambda functions in the account, including which one's have admin roles attached. Also gives you handy commands for downloading each function. |
| AWS | network-ports | Enumerates AWS services that are potentially exposing a network service. The security groups and the network ACLs are parsed for each resource to determine what ports are potentially exposed. |
| AWS | orgs | Enumerate accounts in an organization |
| AWS | outbound-assumed-roles | List the roles that have been assumed by principals in this account. This is an excellent way to find outbound attack paths that lead into other accounts. |
| AWS | permissions | Enumerates IAM permissions associated with all users and roles. Grep this output to figure out what permissions a particular principal has rather than logging into the AWS console and painstakingly expanding each pol |
$ claude mcp add cloudfox \
-- python -m otcore.mcp_server <graph>