trailscraper
cloudsplaining
trailscraper | cloudsplaining | |
---|---|---|
6 | 3 | |
761 | 1,852 | |
- | - | |
8.8 | 0.0 | |
3 days ago | 4 months ago | |
Python | JavaScript | |
Apache License 2.0 | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
trailscraper
- TrailScraper
-
How to get the exact IAM services/roles needed to run a command
I like using https://github.com/flosell/trailscraper for this
- flosell/trailscraper - a command-line tool to get valuable information out of AWS CloudTrail
- TrailScraper: A command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies
- Trailscraper can scrape your Cloudtrail logs and generate IAM Policies from the resources and verbs used by your users or roles
-
Is there a tool that tells you which IAM actions to allow if you give it an API operation?
I’ve used this project in the past to pull out policy information https://github.com/flosell/trailscraper (it’s a CLI, FYI)
cloudsplaining
What are some alternatives?
aws-secure-environment-accelerator - The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.
cloudsploit - Cloud Security Posture Management (CSPM)
cloudtracker - CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
cloudmapper - CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
parliament - AWS IAM linting library
awesome-aws-security - Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
aws-leastprivilege - Generates an IAM policy for the CloudFormation service role that adheres to least privilege.
AirIAM - Least privilege AWS IAM Terraformer
aws-cloudformation-templates - A collection of useful CloudFormation templates
policy_sentry - IAM Least Privilege Policy Generator
iamlive - Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy
sfmc-devtools - Fast-track your developers and devops engineers by allowing them to programmatically copy-paste / deploy changes and work offline