discover-aws-iam-resource-access
AirIAM
discover-aws-iam-resource-access | AirIAM | |
---|---|---|
1 | 3 | |
13 | 753 | |
- | 0.4% | |
0.0 | 0.0 | |
about 2 years ago | 2 months ago | |
Python | Python | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
discover-aws-iam-resource-access
-
Is there a better way/tool to visualize AWS IAM role permissions?
I'd check this out and try to re-use some of the code to also scope to a list of identities: https://github.com/aws-samples/discover-aws-iam-resource-access
AirIAM
-
AWS Networking Concepts in a Diagram
ugh access + least privilege on AWS + GCP is really hard
not made easier by the fact that debugging service accounts can sometimes require rebooting boxes or clusters
'cloud traceroute' to discover where exactly the problem is would be amazing
(in fairness there are 'least privilege' tools I haven't tried -- listed below and I recall reading about others)
1. iam access analyzer https://aws.amazon.com/blogs/security/iam-access-analyzer-ma...
2. airiam https://github.com/bridgecrewio/AirIAM
3. policy simulator https://cloud.google.com/policy-intelligence/docs/iam-simula...
- AirIAM
-
My first Hacktoberfest !!✨
View on GitHub
What are some alternatives?
PMapper - A tool for quickly evaluating IAM permissions in AWS.
consoleme - A Central Control Plane for AWS Permissions and Access
cloudsplaining - Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
aws-security-workshops - A collection of the latest AWS Security workshops
learn - Sourcegraph Learn: an educational hub to support all developers
tfwrapper - Claranet France Terraform & OpenTofu Wrapper
black - The uncompromising Python code formatter [Moved to: https://github.com/psf/black]
n - Node version management
sso-setup-automation - AWS IAM Identity Center - Automated Setup
learn.
Prefect - The easiest way to build, run, and monitor data pipelines at scale.
aws-iam-generator - Generate Multi-Account IAM users/groups/roles/policies from a simple YAML configuration file and Jinja2 templates.