CloudWanderer-io/PolicyGlass external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CloudWanderer-io/PolicyGlass

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CloudWanderer-io/PolicyGlass)

Close

CloudWanderer-io / PolicyGlassView on GitHubMore

• External links
• Readme badge

PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicyShards which are always Allow, never Deny.

☆60Jan 9, 2022Updated 4 years ago

Alternatives and similar repositories for PolicyGlass

Users that are interested in PolicyGlass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• iann0036 / tree-view-cfn

  View on GitHub
  Force CloudFormation to generate a tree view for any stack
  ☆18Sep 14, 2022Updated 3 years ago
• SummitRoute / aws_exposable_resources

  View on GitHub
  Resource types that can be publicly exposed on AWS
  ☆335Feb 23, 2022Updated 4 years ago
• disruptops / assess_network

  View on GitHub
  Assess certain AWS network configurations
  ☆12Aug 22, 2018Updated 7 years ago
• alanakirby / aktion

  View on GitHub
  AKTION sends the latest AWS Services and Actions each week to your chosen email address. Essential for AWS IAM policy management.
  ☆20Feb 17, 2020Updated 6 years ago
• aws-samples / aws-cognito-okta-federation

  View on GitHub
  ☆24May 31, 2024Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆135Oct 23, 2023Updated 2 years ago
• z0ph / aa-policy-validator

  View on GitHub
  Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation
  ☆43May 20, 2021Updated 5 years ago
• willbengtson / trailblazer-aws

  View on GitHub
  Blazing CloudTrail since 2018
  ☆138Jan 27, 2019Updated 7 years ago
• ReversecLabs / IAMSpy

  View on GitHub
  ☆233Jun 10, 2026Updated last week
• aws-samples / aws-iamctl

  View on GitHub
  ☆63Oct 29, 2024Updated last year
• Netflix-Skunkworks / cloudtrail-anomaly

  View on GitHub
  ☆83Dec 5, 2019Updated 6 years ago
• tenchi-security / camp

  View on GitHub
  CloudSplaining on AWS Managed Policies
  ☆44Sep 8, 2025Updated 9 months ago
• goldfiglabs / introspector

  View on GitHub
  A schema and set of tools for using SQL to query cloud infrastructure.
  ☆66Oct 8, 2021Updated 4 years ago
• nccgroup / SFPolDevChk

  View on GitHub
  Salesforce Policy Deviation Checker
  ☆30Sep 30, 2020Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• salecharohit / do-pentest

  View on GitHub
  Spin up a Digital Ocean droplet using Terraform and Ansible
  ☆12Oct 22, 2021Updated 4 years ago
• common-fate / iamzero

  View on GitHub
  Identity & Access Management simplified and secure.
  ☆260Mar 6, 2023Updated 3 years ago
• goldfiglabs / rpCheckup

  View on GitHub
  rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, …
  ☆163Apr 22, 2021Updated 5 years ago
• myoung34 / cloudcustodian-rules

  View on GitHub
  Some of my personal rules for CapitalOne's Cloud Custodian project
  ☆45Apr 20, 2021Updated 5 years ago
• ThreatResponse / mad-king

  View on GitHub
  Proof of Concept Zappa Based AWS Persistence and Attack Platform
  ☆40Jun 26, 2020Updated 5 years ago
• mark-adams / gcp-ip-list

  View on GitHub
  A CLI tool (and library) written in Go to simplify the process of retrieving IP addresses from infrastructure hosted on Google Cloud Plat…
  ☆11Apr 28, 2026Updated last month
• zoph-io / aws-trustline

  View on GitHub
  AWS Trustline: Check external access on your AWS account
  ☆128Feb 27, 2026Updated 3 months ago
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆158Oct 29, 2024Updated last year
• aws-samples / elevate-your-aws-iam-policy-using-iam-access-analyzer

  View on GitHub
  This implementation demonstrates the AWS Identity and Access Management (IAM) Access Analyzer policy validation capability. Learn how to …
  ☆24Jun 16, 2022Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• iRobotCorporation / ssm-ctl

  View on GitHub
  Manage your AWS SSM parameters
  ☆17Jul 26, 2019Updated 6 years ago
• SummitRoute / csp_security_mistakes

  View on GitHub
  This repo has been replaced by https://www.cloudvulndb.org
  ☆724Jun 29, 2022Updated 3 years ago
• glassechidna / trackiam

  View on GitHub
  A project to collate IAM actions, AWS APIs and managed policies from various public sources.
  ☆305Updated this week
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆291Jun 10, 2026Updated last week
• primeharbor / aws-fast-fixes

  View on GitHub
  Scripts to quickly fix security and compliance issues
  ☆28Mar 10, 2026Updated 3 months ago
• turnerlabs / antiope

  View on GitHub
  AWS Inventory and Compliance Framework
  ☆224Jul 12, 2023Updated 2 years ago
• salesforce / metabadger

  View on GitHub
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143May 1, 2025Updated last year
• ihamburglar / Redboto

  View on GitHub
  Red Team Scripts for AWS.
  ☆170Jul 28, 2020Updated 5 years ago
• jchrisfarris / detect-credential-compromise

  View on GitHub
  Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.
  ☆29Aug 18, 2019Updated 6 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• Netflix-Skunkworks / aws-credential-compromise-detection

  View on GitHub
  Example detection of compromise credentials in AWS
  ☆122Aug 6, 2018Updated 7 years ago
• symopsio / terraform-github-actions-oidc

  View on GitHub
  Companion to our blog post
  ☆15Apr 14, 2022Updated 4 years ago
• toshke / aws-keys-sectool

  View on GitHub
  Command line to list and IP whitelist active AWS credentials
  ☆15Apr 7, 2022Updated 4 years ago
• scalefactory / s3audit-ts

  View on GitHub
  CLI tool for auditing S3 buckets
  ☆106Aug 2, 2023Updated 2 years ago
• duo-labs / cloudtrail-partitioner

  View on GitHub
  ☆159Jul 8, 2023Updated 2 years ago
• nccgroup / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,561Aug 2, 2024Updated last year
• salesforce / aws-allowlister

  View on GitHub
  Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…
  ☆224Jun 2, 2026Updated 2 weeks ago