Open Source Tools
Collection of open source projects to help you wrangle and right size your IAM policies in practice
|IAM Policy Validator for AWS CloudFormation||A command line tool that takes a CloudFormation template, parses the IAM policies attached to IAM roles, users, groups, and resources then runs them through IAM Access Analyzer validation checks.||Learn More|
|IAM Vulnerable||IAM Vulnerable uses the Terraform binary and your AWS credentials to deploy over 250 IAM resources into your selected AWS account. Within minutes, you can start learning how to identify and exploit vulnerable IAM configurations that allow for privilege escalation.||Learn More|
|IAM Dataset||This consolidated AWS IAM dataset is a series of tools to develop a comprehensive map (map.json) from SDK calls to IAM actions, and evaluation of managed policies.||Learn More|
|KIAM||Integrate AWS IAM with Kubernetes clusters to associate IAM roles to Pods.||Learn More|
|CloudQuery||Project to transform multi-cloud infrastructure into queryable SQL or Graphs.||Learn More|
|Action2AWS||AWS IAM roles for GitHub Actions workflows.||Learn More|
|ConsoleMe||Manages AWS IAM policies and access requests.||Learn More|
|Cloudsplaining||Identifies violations of least privilege in AWS and generates a report.||Learn More|
|Policy Sentry||Generates least privilege AWS IAM policies||Learn More|
Suggest a Resource
Know of a good resource that our community could benefit from?
Drop us a note and we'll take a look. Thanks!
Get the IAM Pulse Check Newsletter
We send out a periodic newsletter full of tips & tricks, contributions from the community, commentary on the industry, relevant social posts, and more.
Checkout past issues for a sampling of the goods.