Fennerr/PMapper external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Fennerr/PMapper

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Fennerr/PMapper)

Close

Fennerr / PMapperView on GitHubMore

• External links
• Readme badge

A tool for quickly evaluating IAM permissions in AWS.

☆76May 27, 2024Updated last year

Alternatives and similar repositories for PMapper

Users that are interested in PMapper are comparing it to the libraries listed below

• hotnops / apeman

  View on GitHub
  AWS Attack Path Management Tool - Walking on the Moon
  ☆263Dec 5, 2024Updated last year
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• ReversecLabs / IAMSpy

  View on GitHub
  ☆229Mar 10, 2026Updated last week
• ReversecLabs / cloud-security-vm

  View on GitHub
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆142Jan 2, 2025Updated last year
• welldone-cloud / aws-lint-iam-policies

  View on GitHub
  Runs IAM policy linting and security checks against either a single AWS account or multiple member accounts of an AWS Organization.
  ☆152Dec 21, 2025Updated 2 months ago
• cloud-copilot / iam-expand

  View on GitHub
  Expand IAM Actions with Wildcards
  ☆35Updated this week
• matthewdfuller / safer-scps

  View on GitHub
  Safer AWS SCP deployments via real-time monitoring
  ☆56Sep 30, 2023Updated 2 years ago
• carta / krang

  View on GitHub
  Knowledge Report Alert & Normalization Generator
  ☆26Feb 11, 2026Updated last month
• ReversecLabs / IAMGraph

  View on GitHub
  ☆71Jan 8, 2025Updated last year
• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆135Oct 23, 2023Updated 2 years ago
• ayushpriya10 / IMDShift

  View on GitHub
  ☆55Apr 25, 2023Updated 2 years ago
• SecurityRunners / CloudCommotion

  View on GitHub
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆146Jun 18, 2024Updated last year
• benkehoe / permissions-boundary-test

  View on GitHub
  Demonstration that AWS IAM policy evaluation docs are incorrect
  ☆16Sep 28, 2021Updated 4 years ago
• offensive-actions / terraform-provider-statefile-rce

  View on GitHub
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆62Jan 25, 2025Updated last year
• Frichetten / ssm-agent-research

  View on GitHub
  This is a custom SSM agent which is sorta functional
  ☆17Jul 5, 2021Updated 4 years ago
• adanalvarez / HoneyTrail

  View on GitHub
  Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…
  ☆51Nov 16, 2024Updated last year
• aws-samples / sso-sync-to-amazon-rds

  View on GitHub
  ☆36May 31, 2024Updated last year
• salesforce / cloudsplaining

  View on GitHub
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,195Mar 4, 2026Updated 2 weeks ago
• welldone-cloud / aws-scps-for-sandbox-and-training-accounts

  View on GitHub
  Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.
  ☆161Dec 22, 2025Updated 2 months ago
• domain-protect / terraform-aws-domain-protect

  View on GitHub
  Terraform module for OWASP Domain Protect on AWS
  ☆15Updated this week
• FogSecurity / yes3-scanner

  View on GitHub
  YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection
  ☆102Jan 6, 2026Updated 2 months ago
• awslabs / Chatbot-to-help-security-teams-perform-vulnerability-assessments

  View on GitHub
  ☆28Dec 26, 2025Updated 2 months ago
• nccgroup / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,544Aug 2, 2024Updated last year
• RhinoSecurityLabs / IAMActionHunter

  View on GitHub
  An AWS IAM policy statement parser and query tool.
  ☆199Feb 10, 2026Updated last month
• christophetd / fun-with-vpc-endpoints

  View on GitHub
  ☆14Mar 6, 2023Updated 3 years ago
• iann0036 / aws.permissions.cloud

  View on GitHub
  A crowdsourced AWS IAM permissions reference.
  ☆102Feb 2, 2026Updated last month
• houey / awesome-service-control-policies

  View on GitHub
  Listing of resources for example AWS Service Control Policies (SCPs)
  ☆16Jan 10, 2024Updated 2 years ago
• adanalvarez / TrailAlerts

  View on GitHub
  TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…
  ☆51Nov 9, 2025Updated 4 months ago
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆283Nov 27, 2025Updated 3 months ago
• aws-samples / service-control-policy-examples

  View on GitHub
  Example AWS Service control policies to get started or mature your usage of AWS SCPs.
  ☆287Mar 13, 2026Updated last week
• offensive-actions / azure-storage-reverse-shell

  View on GitHub
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆39Sep 25, 2024Updated last year
• rackn / terraform-provider-drp

  View on GitHub
  Terraform Provider for Digital Rebar Provision
  ☆20Oct 20, 2023Updated 2 years ago
• PankajMoolrajani / access-snipper

  View on GitHub
  Automated least-privilege enforcement for AWS IAM. Analyzes CloudTrail data to compute permission utilization metrics and generates polic…
  ☆13Jan 12, 2026Updated 2 months ago
• iann0036 / iam-dataset

  View on GitHub
  A consolidated series of structured data for cloud identity and access management systems, including datasets for AWS, Azure, and Google …
  ☆302Updated this week
• adanalvarez / TrailDiscover

  View on GitHub
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆174Mar 11, 2026Updated last week
• BishopFox / cloudfox

  View on GitHub
  Automating situational awareness for cloud penetration tests.
  ☆2,309Mar 10, 2026Updated last week
• cado-security / cloudgrep

  View on GitHub
  cloudgrep is grep for cloud storage
  ☆326Updated this week
• BishopFox / cloudfoxable

  View on GitHub
  Create your own vulnerable by design AWS penetration testing playground
  ☆437Feb 16, 2026Updated last month
• grahamhelton / IMDSpoof

  View on GitHub
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆106Nov 24, 2023Updated 2 years ago