Open Source Tools

Collection of open source projects to help you wrangle and right size your IAM policies in practice

IAM Policy Validator for AWS CloudFormation A command line tool that takes a CloudFormation template, parses the IAM policies attached to IAM roles, users, groups, and resources then runs them through IAM Access Analyzer validation checks.Learn More
IAM VulnerableIAM Vulnerable uses the Terraform binary and your AWS credentials to deploy over 250 IAM resources into your selected AWS account. Within minutes, you can start learning how to identify and exploit vulnerable IAM configurations that allow for privilege escalation.Learn More
IAM DatasetThis consolidated AWS IAM dataset is a series of tools to develop a comprehensive map (map.json) from SDK calls to IAM actions, and evaluation of managed policies.Learn More
KIAMIntegrate AWS IAM with Kubernetes clusters to associate IAM roles to Pods.Learn More
CloudQueryProject to transform multi-cloud infrastructure into queryable SQL or Graphs.Learn More
Action2AWSAWS IAM roles for GitHub Actions workflows.Learn More
ConsoleMeManages AWS IAM policies and access requests.Learn More
CloudsplainingIdentifies violations of least privilege in AWS and generates a report.Learn More
Policy SentryGenerates least privilege AWS IAM policiesLearn More

Suggest a Resource

Know of a good resource that our community could benefit from?
Drop us a note and we'll take a look. Thanks!

Get the IAM Pulse Check Newsletter

We send out a periodic newsletter full of tips & tricks, contributions from the community, commentary on the industry, relevant social posts, and more.

Checkout past issues for a sampling of the goods.