Skip to main content
Zondex
login
Browse Stats Pricing Blog Dorks How-To Docs
cloud

Cloud Misconfiguration Search Dorks

Find misconfigured cloud services, exposed Docker APIs, Kubernetes dashboards, and cloud storage.

Docker API Exposed

high

Unauthenticated Docker daemon API. Full container and host control possible.

search port:2375 product:docker

Kubernetes Dashboard

high

Kubernetes web dashboards, sometimes with no authentication configured.

search http.title:"Kubernetes Dashboard"

Kubernetes API

high

Kubernetes API servers accessible from the internet.

search port:6443 service:kubernetes

etcd Exposed

high

etcd key-value stores used by Kubernetes. May contain secrets and credentials.

search port:2379 product:etcd

GitLab Instances

medium

Self-hosted GitLab instances. Check for public registration and exposed repos.

search http.title:"GitLab" port:443

Jenkins Open CI/CD

high

Jenkins instances responding 200 — likely accessible without authentication.

search product:jenkins http.status:200

Consul Service Mesh

medium

HashiCorp Consul service discovery with potentially exposed service catalog.

search product:consul port:8500

Vault Unsecured

high

HashiCorp Vault secret management. Check if initialized and sealed.

search product:vault port:8200

Terraform State

medium

Terraform Enterprise/Cloud interfaces that may expose infrastructure state.

search http.title:"Terraform" port:443

MinIO Storage

medium

MinIO S3-compatible object storage. Check for public bucket access.

search product:minio port:9000

Other Dork Categories

database Exposed Databases admin_panel_settings Admin Panels devices_other IoT Devices factory Industrial / SCADA lan Network Services bug_report CVE & Vulnerabilities language Web Technologies
support_agent
Zondex Support
Usually replies within minutes
Hi there!
Send us a message and we'll reply as soon as possible.