Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation

Last update: Dec 12, 2022

Overview

✅ Access Analyzer - Batch Policy Validator

This script will analyze using AWS Access Analyzer - Policy Validation all your account customer managed IAM policies.

Usage

ProTip 💡 : Use AWS CloudShell to run this directly on your AWS Account

Install

    $ python3 -m pip install aa-policy-validator --user

Run

    $ python3 -m aa-policy-validator

Update

    $ python3 -m pip install aa-policy-validator -U --user --no-cache-dir

Results

Results will be written into /tmp/findings folder with a README.md file inside.

This automation protect against subdomain takeover on AWS env which also send alerts on slack.

AWS_Subdomain_Takeover_Detector Purpose The purpose of this automation is to detect misconfigured Route53 entries which are vulnerable to subdomain ta

8 May 18, 2022

AWS Auto Inventory allows you to quickly and easily generate inventory reports of your AWS resources.

Photo by Denny Müller on Unsplash AWS Automated Inventory ( aws-auto-inventory ) Automates creation of detailed inventories from AWS resources. Table

123 Dec 26, 2022

Ghostbuster - Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts

Table of Contents Table of Contents Ghostbuster The problem Project Features Ins

182 Dec 24, 2022

An open source API to validate the EU Covid Certificates / Green Certificates

Open Covid Certificate Validator This an open source API to validate EU Digital COVID Certificates. It receives a COVID certificate and validates it u

47 May 30, 2022

The Research PACS on AWS solution facilitates researchers' access medical images stored in the clinical PACS in a secure and seamless manner

Research PACS on AWS Challenge to solve Solution presentation Deploy the solution Further reading Releases License Challenge to solve The rise of new

23 Sep 9, 2022

Check AWS S3 instances for read/write/delete access

s3sec Test AWS S3 buckets for read/write/delete access This tool was developed to quickly test a list of s3 buckets for public read, write and delete

114 Dec 6, 2022

Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-sourced by Ermetic.

Access Undenied on AWS Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable fixes. Access U

204 Jan 2, 2023

A suite of utilities for AWS Lambda Functions that makes tracing with AWS X-Ray, structured logging and creating custom metrics asynchronously easier

1.9k Jan 7, 2023

aws-lambda-scheduler lets you call any existing AWS Lambda Function you have in a future time.

aws-lambda-scheduler aws-lambda-scheduler lets you call any existing AWS Lambda Function you have in the future. This functionality is achieved by dyn

57 Dec 17, 2022

Releases(0.8)

0.8(Apr 11, 2021)

0.8
Source code(tar.gz)
Source code(zip)
0.6(Apr 11, 2021)

0.6
Source code(tar.gz)
Source code(zip)
0.5(Apr 10, 2021)

0.5
Source code(tar.gz)
Source code(zip)
0.4(Apr 10, 2021)

0.4
Source code(tar.gz)
Source code(zip)
0.2(Apr 10, 2021)

0.2
Source code(tar.gz)
Source code(zip)
0.1(Apr 10, 2021)

First Version - Work in progress.
Source code(tar.gz)
Source code(zip)

Owner

Victor GRENU

🏴‍☠️ Independent AWS Cloud Architect. DevSecOps, Automation, and CloudNative Solutions. Former @microsoft. Hire me on @zoph-io

GitHub Repository https://zoph.me

Prisma Cloud utility scripts, and a Python SDK for Prisma Cloud APIs.

pcs-toolbox Prisma Cloud utility scripts, and a Python SDK for Prisma Cloud APIs. Table of Contents Support Setup Configuration Script Usage CSPM Scri

34 Dec 15, 2022

Sukoshi is a proof-of-concept Python implant that leverages the MQTT protocol for C2 and uses AWS IoT Core as infrastructure.

Sukoshi | 少し Overview Sukoshi is a proof-of-concept Python implant that leverages the MQTT protocol for C2 and uses AWS IoT Core as infrastructure. It

37 Oct 29, 2022

Secret messaging app which you can use to communicate with your friends by encrypting / decrypting secret messages or sending secret message through mail.

Secret-Whisper A Secret messaging app which you can use to communicate with your friends by encrypting / decrypting secret messages 🤫 or sending secr

3 Jan 01, 2022

Facebook Clooning Tool BD...

2 Feb 16, 2022

Telegram Voice-Chat Bot

Telegram Voice-Chat Bot [PyTGCalls] ⇝ Requirements ⇜ Account requirements A Telegram account to use as the music bot, You cannot use regular bot accou

1 Dec 03, 2021

A telegram bot that can send you high-quality audio 🎧🎧🎧

Music downloader bot Still under development Please Report issues to improve this repo.I will try to fix bugs in next update Music downloader bot is a

36 Dec 06, 2022

Lazy airdrop based on private temporary ids

LobsterDAO This uses a modified MerkleDistributor, which allows to issue a lazy airdrop using temporary IDs. In this example it uses Telegram chat_id

41 Sep 10, 2022

EzilaX Music ❤ is the best and only Telegram VC player with playlists, Multi Playback, Channel play and more POWERD By SDBOTs

EzilaX-Music 🎵 A bot that can play music on Telegram Group and Channel Voice Chats Available on telegram as @EzilaXMBot Features 🔥 Thumbnail Support

9 Oct 24, 2021

Generate direct m3u playlist for all the channels subscribed in the Tata Sky portal

Tata Sky IPTV Script generator A script to generate the m3u playlist containing direct streamable file (.mpd or MPEG-DASH or DASH) based on the channe

250 Jan 01, 2023

This is a scalable system that reads messages from public Telegram channels using Telethon and stores the data in a PostgreSQL database.

This is a scalable system that reads messages from public Telegram channels using Telethon and stores the data in a PostgreSQL database. Its original intention is to monitor cryptocurrency related ch

3 Jun 07, 2022

Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation

Related tags

Overview

✅ Access Analyzer - Batch Policy Validator

Usage

Install

Run

Update

Results

You might also like...

This automation protect against subdomain takeover on AWS env which also send alerts on slack.

AWS Auto Inventory allows you to quickly and easily generate inventory reports of your AWS resources.

Ghostbuster - Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts

An open source API to validate the EU Covid Certificates / Green Certificates

The Research PACS on AWS solution facilitates researchers' access medical images stored in the clinical PACS in a secure and seamless manner

Check AWS S3 instances for read/write/delete access

Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-sourced by Ermetic.

A suite of utilities for AWS Lambda Functions that makes tracing with AWS X-Ray, structured logging and creating custom metrics asynchronously easier

aws-lambda-scheduler lets you call any existing AWS Lambda Function you have in a future time.

Releases(0.8)

0.8(Apr 11, 2021)

0.6(Apr 11, 2021)

0.5(Apr 10, 2021)

0.4(Apr 10, 2021)

0.2(Apr 10, 2021)

0.1(Apr 10, 2021)

Owner

Victor GRENU

Prisma Cloud utility scripts, and a Python SDK for Prisma Cloud APIs.

Sukoshi is a proof-of-concept Python implant that leverages the MQTT protocol for C2 and uses AWS IoT Core as infrastructure.

Secret messaging app which you can use to communicate with your friends by encrypting / decrypting secret messages or sending secret message through mail.

Facebook Clooning Tool BD...

Telegram Voice-Chat Bot

A telegram bot that can send you high-quality audio 🎧🎧🎧

Lazy airdrop based on private temporary ids

EzilaX Music ❤ is the best and only Telegram VC player with playlists, Multi Playback, Channel play and more POWERD By SDBOTs

Generate direct m3u playlist for all the channels subscribed in the Tata Sky portal

This is a scalable system that reads messages from public Telegram channels using Telethon and stores the data in a PostgreSQL database.

For Help/Questions Join in discord

Search all history of Chrome in terminal

Auto Join: A GitHub action script to automatically invite everyone to the organization who comment at the issue page.

MashaRobot : New Generation Telegram Group Manager Bot (🔸Fast 🔸Python🔸Pyrogram 🔸Telethon 🔸Mongo db )

A Python Script to automate searching of available vaccination centers in the city and hence booking

A basic API to scrape Craigslist.

A google search telegram bot.

This automation protect against subdomain takeover on AWS env which also send alerts on slack.

Automated AWS account hardening with AWS Control Tower and AWS Step Functions

Yet another discord-BOT