Alternatives and similar repositories for PMapper

Users that are interested in PMapper are comparing it to the libraries listed below

• cloud-copilot / iam-simulate
  An IAM Simulator that outputs detailed explains of how a request was evaluated.
  ☆93Updated this week
• ReversecLabs / IAMSpy
  ☆220Updated 2 months ago
• tracebit-com / find-s3-account
  Sample code for finding AWS Account ID of an S3 bucket.
  ☆49Updated last year
• Frichetten / aws-api-models
  A collection of documented and undocumented AWS API models
  ☆37Updated 9 months ago
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆87Updated last year
• PaloAltoNetworks / IAM-Deescalate
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆98Updated 2 years ago
• primeharbor / sensitive_iam_actions
  Crowdsourced list of sensitive IAM Actions
  ☆154Updated 10 months ago
• AirWalk-Digital / AWSXenos
  AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more
  ☆64Updated 5 months ago
• TinderSec / oidc-scanner-aws
  ☆49Updated 2 years ago
• ovotech / cloud-key-rotator
  A Golang program to rotate AWS & GCP account keys
  ☆66Updated 3 months ago
• Aqua-Nautilus / TrailShark
  ☆50Updated 10 months ago
• turbot / steampipe-mod-aws-perimeter
  Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…
  ☆112Updated 3 weeks ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• hotnops / apeman
  AWS Attack Path Management Tool - Walking on the Moon
  ☆257Updated 8 months ago
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143Updated 3 months ago
• cloud-copilot / iam-collect
  Collect IAM information from all your AWS organization, accounts, and resources.
  ☆42Updated last week
• aidansteele / s3zipper
  A tool that allows downloading S3 directories as ZIP files
  ☆35Updated 2 years ago
• onemorepereira / aws-sso-reporter
  AWS SSO Reporter
  ☆54Updated 3 months ago
• tuladhar / cleanup-aws-access-keys
  A cloud security tool to search and clean up unused AWS access keys, written in Go.
  ☆51Updated 2 years ago
• DataDog / undocumented-aws-api-hunter
  A tool to uncover undocumented APIs from the AWS Console.
  ☆113Updated 4 months ago
• 9rnt / poro
  Scan publicly accessible assets on your AWS cloud environment
  ☆137Updated 2 months ago
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆192Updated 2 months ago
• anirudhbiyani / findmytakeover
  find dangling domains in a multi cloud environment
  ☆143Updated this week
• goldfiglabs / introspector
  A schema and set of tools for using SQL to query cloud infrastructure.
  ☆66Updated 3 years ago
• adanalvarez / TrailAlerts
  TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…
  ☆47Updated 3 months ago
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Updated last year
• goldfiglabs / sgCheckup
  sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
  ☆82Updated 3 years ago
• matthewdfuller / safer-scps
  Safer AWS SCP deployments via real-time monitoring
  ☆55Updated last year
• cado-security / cloudgrep
  cloudgrep is grep for cloud storage
  ☆326Updated 6 months ago
• cybrota / whispr
  A multi-vault secret injection tool for safely injecting secrets into app environment
  ☆128Updated 2 weeks ago