aws-actions-export.py
- Exports list of AWS actions, resources, and condition keys per service. Import HTML file into Excel for additional filtering.
These scripts provide a number of benefits to help reduce security risks within IAM policies.
- Find supported Resources per Action.
- Find Dependent Actions where privilege escalation could occur.
- List documented Actions dependent on
iam:PassRole
. (76 so far)
Results are subject to updates made by AWS to the Service Authorization Reference docs. Not all services, actions, and supporting information will be listed.
cli-export.py
- Exports list of all AWS CLI vervion 2 actions per service.
- Additional work can be done to pull supported switches.
- Run
pip3 install -r requirements.txt
to installbs4
andrequests