RhinoSecurityLabs/IAMActionHunter external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

RhinoSecurityLabs/IAMActionHunter

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/RhinoSecurityLabs/IAMActionHunter)

Close

RhinoSecurityLabs / IAMActionHunterView on GitHubMore

• External links
• Readme badge

An AWS IAM policy statement parser and query tool.

☆198Feb 10, 2026Updated 3 weeks ago

Alternatives and similar repositories for IAMActionHunter

Users that are interested in IAMActionHunter are comparing it to the libraries listed below

• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆135Oct 23, 2023Updated 2 years ago
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• VirtueSecurity / IAMhounddog

  View on GitHub
  A tool to help pentesters quickly identify privileged principals and second-order privilege escalation opportunities in unfamiliar AWS ac…
  ☆145Nov 14, 2025Updated 3 months ago
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆283Nov 27, 2025Updated 3 months ago
• tenable / cnappgoat-scenarios

  View on GitHub
  This repository provides a comprehensive collection of Pulumi scenarios utilized by cnappgoat
  ☆21Jan 28, 2025Updated last year
• adanalvarez / TrailDiscover

  View on GitHub
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆174Feb 22, 2026Updated last week
• SecurityRunners / cloud-exposure-catalog

  View on GitHub
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆14Aug 30, 2024Updated last year
• saw-your-packet / CloudShovel

  View on GitHub
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆113Nov 13, 2024Updated last year
• DataDog / pathfinding.cloud

  View on GitHub
  An AWS IAM Privilege Escalation Path Library
  ☆120Feb 23, 2026Updated last week
• ReversecLabs / leonidas

  View on GitHub
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆606Nov 28, 2024Updated last year
• BishopFox / cloudfox

  View on GitHub
  Automating situational awareness for cloud penetration tests.
  ☆2,299Updated this week
• BishopFox / iam-vulnerable

  View on GitHub
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆550Sep 11, 2025Updated 5 months ago
• adanalvarez / TrailAlerts

  View on GitHub
  TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…
  ☆51Nov 9, 2025Updated 3 months ago
• fwdcloudsec / known_aws_accounts

  View on GitHub
  List of known AWS accounts
  ☆257Feb 6, 2026Updated last month
• hotnops / apeman

  View on GitHub
  AWS Attack Path Management Tool - Walking on the Moon
  ☆262Dec 5, 2024Updated last year
• SummitRoute / aws_exposable_resources

  View on GitHub
  Resource types that can be publicly exposed on AWS
  ☆331Feb 23, 2022Updated 4 years ago
• tenable / cnappgoat

  View on GitHub
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆292Sep 4, 2024Updated last year
• ReversecLabs / awspx

  View on GitHub
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆995Oct 4, 2022Updated 3 years ago
• nccgroup / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,544Aug 2, 2024Updated last year
• zmallen / cloudtrail2sightings

  View on GitHub
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Jul 25, 2022Updated 3 years ago
• 0x4D31 / detection-and-response-pipeline

  View on GitHub
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆289Feb 5, 2024Updated 2 years ago
• christophetd / aws-sso-device-code-authentication

  View on GitHub
  ☆38Jun 9, 2021Updated 4 years ago
• Permiso-io-tools / SkyScalpel

  View on GitHub
  ☆46Nov 7, 2024Updated last year
• tenable / EscalateGPT

  View on GitHub
  An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.
  ☆120Feb 4, 2026Updated last month
• salesforce / cloudsplaining

  View on GitHub
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,185Updated this week
• RhinoSecurityLabs / cloudgoat

  View on GitHub
  CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
  ☆3,490Feb 12, 2026Updated 3 weeks ago
• caizencloud / caizen

  View on GitHub
  Harness the security superpowers of your cloud asset inventory
  ☆11Sep 22, 2024Updated last year
• stephenbradshaw / aws_url_signer

  View on GitHub
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Sep 20, 2023Updated 2 years ago
• awslabs / aws-security-assessment-solution

  View on GitHub
  An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
  ☆592Nov 12, 2025Updated 3 months ago
• cloud-copilot / iam-collect

  View on GitHub
  Collect IAM information from all your AWS organization, accounts, and resources.
  ☆86Updated this week
• cyberark / SkyArk

  View on GitHub
  SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
  ☆908Dec 17, 2024Updated last year
• zoph-io / subnet-watcher

  View on GitHub
  AWS VPC Subnets Watcher
  ☆79Aug 23, 2023Updated 2 years ago
• BishopFox / cloudfoxable

  View on GitHub
  Create your own vulnerable by design AWS penetration testing playground
  ☆437Feb 16, 2026Updated 2 weeks ago
• primeharbor / breaches.cloud

  View on GitHub
  https://breaches.cloud
  ☆42Oct 16, 2024Updated last year
• tenchi-security / camp

  View on GitHub
  CloudSplaining on AWS Managed Policies
  ☆44Sep 8, 2025Updated 5 months ago
• vectra-ai-research / derf

  View on GitHub
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Jan 12, 2024Updated 2 years ago
• ReversecLabs / IAMSpy

  View on GitHub
  ☆229Feb 24, 2026Updated last week
• AbstractClass / CloudPrivs

  View on GitHub
  Determine privileges from cloud credentials via brute-force testing.
  ☆68Aug 22, 2024Updated last year
• PaloAltoNetworks / IAM-Deescalate

  View on GitHub
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆98Sep 14, 2022Updated 3 years ago