Fennerr/PMapper external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Fennerr/PMapper

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Fennerr/PMapper)

Close

Fennerr / PMapperView on GitHubMore

• External links
• Readme badge

A tool for quickly evaluating IAM permissions in AWS.

☆75May 27, 2024Updated last year

Alternatives and similar repositories for PMapper

Users that are interested in PMapper are comparing it to the libraries listed below

• hotnops / apeman

  View on GitHub
  AWS Attack Path Management Tool - Walking on the Moon
  ☆261Dec 5, 2024Updated last year
• ReversecLabs / IAMSpy

  View on GitHub
  ☆229Updated this week
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• welldone-cloud / aws-lint-iam-policies

  View on GitHub
  Runs IAM policy linting and security checks against either a single AWS account or multiple member accounts of an AWS Organization.
  ☆152Dec 21, 2025Updated 2 months ago
• matthewdfuller / safer-scps

  View on GitHub
  Safer AWS SCP deployments via real-time monitoring
  ☆56Sep 30, 2023Updated 2 years ago
• benkehoe / permissions-boundary-test

  View on GitHub
  Demonstration that AWS IAM policy evaluation docs are incorrect
  ☆16Sep 28, 2021Updated 4 years ago
• ReversecLabs / cloud-security-vm

  View on GitHub
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆142Jan 2, 2025Updated last year
• offensive-actions / azure-storage-reverse-shell

  View on GitHub
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆39Sep 25, 2024Updated last year
• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆135Oct 23, 2023Updated 2 years ago
• ReversecLabs / IAMGraph

  View on GitHub
  ☆71Jan 8, 2025Updated last year
• awslabs / Chatbot-to-help-security-teams-perform-vulnerability-assessments

  View on GitHub
  ☆29Dec 26, 2025Updated 2 months ago
• adanalvarez / TrailAlerts

  View on GitHub
  TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…
  ☆51Nov 9, 2025Updated 3 months ago
• FogSecurity / yes3-scanner

  View on GitHub
  YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection
  ☆102Jan 6, 2026Updated last month
• welldone-cloud / aws-scps-for-sandbox-and-training-accounts

  View on GitHub
  Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.
  ☆161Dec 22, 2025Updated 2 months ago
• RhinoSecurityLabs / IAMActionHunter

  View on GitHub
  An AWS IAM policy statement parser and query tool.
  ☆198Feb 10, 2026Updated 2 weeks ago
• aws-solutions / real-time-insights-account-activity

  View on GitHub
  An application and real-time dashboard providing insights into AWS account activity.
  ☆42Sep 8, 2022Updated 3 years ago
• duo-labs / parliament

  View on GitHub
  AWS IAM linting library
  ☆1,109Jan 7, 2026Updated last month
• SecurityRunners / CloudCommotion

  View on GitHub
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆145Jun 18, 2024Updated last year
• adanalvarez / HoneyTrail

  View on GitHub
  Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…
  ☆51Nov 16, 2024Updated last year
• salesforce / cloudsplaining

  View on GitHub
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,184Feb 20, 2026Updated last week
• tenable / access-undenied-aws

  View on GitHub
  Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…
  ☆267Jan 26, 2023Updated 3 years ago
• nccgroup / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,541Aug 2, 2024Updated last year
• cloud-copilot / iam-expand

  View on GitHub
  Expand IAM Actions with Wildcards
  ☆34Updated this week
• BishopFox / cloudfoxable

  View on GitHub
  Create your own vulnerable by design AWS penetration testing playground
  ☆437Feb 16, 2026Updated last week
• adanalvarez / TrailDiscover

  View on GitHub
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆174Updated this week
• zoph-io / aws-internal-static-web-hosting

  View on GitHub
  Host Internal Static Website on AWS
  ☆17Dec 6, 2023Updated 2 years ago
• philippemerle / AWS-CloudFormation-Diagrams

  View on GitHub
  A simple CLI script to generate AWS infrastructure diagrams from AWS CloudFormation templates
  ☆27Updated this week
• ayushpriya10 / IMDShift

  View on GitHub
  ☆55Apr 25, 2023Updated 2 years ago
• ontherivt / req-update-check

  View on GitHub
  ☆16Jan 29, 2026Updated last month
• hjacobs / connection-tracker

  View on GitHub
  Track public endpoints and connections across AWS accounts using VPC Flow Logs
  ☆12Jun 14, 2016Updated 9 years ago
• iann0036 / iam-dataset

  View on GitHub
  A consolidated series of structured data for cloud identity and access management systems, including datasets for AWS, Azure, and Google …
  ☆300Updated this week
• offensive-actions / terraform-provider-statefile-rce

  View on GitHub
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆62Jan 25, 2025Updated last year
• grahamhelton / IMDSpoof

  View on GitHub
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆106Nov 24, 2023Updated 2 years ago
• DataDog / whoAMI-scanner

  View on GitHub
  Scan your account for the use of untrusted AMIs
  ☆31Feb 13, 2026Updated 2 weeks ago
• christophetd / fun-with-vpc-endpoints

  View on GitHub
  ☆14Mar 6, 2023Updated 2 years ago
• iRobotCorporation / ssm-ctl

  View on GitHub
  Manage your AWS SSM parameters
  ☆16Jul 26, 2019Updated 6 years ago
• cloud-copilot / iam-data

  View on GitHub
  Daily Updates of AWS IAM Data
  ☆22Updated this week
• hakaioffsec / gcp_enum

  View on GitHub
  A Python script to authenticate and test access to Google Cloud Platform (GCP) resources.
  ☆18Jan 31, 2024Updated 2 years ago
• Frichetten / ssm-agent-research

  View on GitHub
  This is a custom SSM agent which is sorta functional
  ☆17Jul 5, 2021Updated 4 years ago