AWS

S3
- Determine if a site is hosted as an S3 bucket. Whatever IP is returned will redirect you to AWS S3 landing page.
dig +nocmd <domain name> any +multiline +noall +answer
- A reverse lookup shows what region the S3 bucket is hosted in.
nslookup <IP>
- To list the contents of an S3 bucket, you can use the following CLI command. If the bucket is misconfigured it will list its contents. Alternatively, you can visit a URL crafted as: `http://<domain name>.s3.amazonaws.com`
aws s3 ls s3://<bucket name>/ --no-sign-request --region <region>