CloudPeeker is a tool for quickly scanning a list of domains for the "ownCloud / Nextcloud Unprotected Data Directory" vulnerability. It efficiently checks for this specific vulnerability across multiple domains.
-
Building the Docker Image: Use the provided
Dockerfileto build a Docker image:docker build -t cloudpeeker . -
Running the Tool: Execute CloudPeeker with the following Docker command:
docker run --rm cloudpeeker http://vulnerable-nextcloud-for-clouddrain.lednerb.de
This project is licensed under the MIT License - see the LICENSE file for details.
Find this project on GitHub: Lednerb/CloudPeeker
This scanning tool is part of the IT security study "CloudDrain" conducted by Lednerb IT-Security GmbH.
The aim of this study is to investigate the impact of the "ownCloud / Nextcloud Unprotected Data Directory" vulnerability. A total of 921,220,480 domains were analyzed. Among these, over 255 million domains from the geographical European countries and over 655 million domains from the .com domain range were scanned.