cloud-copilot/iam-expand external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cloud-copilot/iam-expand

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cloud-copilot/iam-expand)

Close

cloud-copilot / iam-expandView on GitHubMore

• External links
• Readme badge

Expand IAM Actions with Wildcards

☆35Mar 14, 2026Updated last week

Alternatives and similar repositories for iam-expand

Users that are interested in iam-expand are comparing it to the libraries listed below

• cloud-copilot / iam-shrink

  View on GitHub
  Make AWS IAM policies smaller by adding wildcards to actions.
  ☆19Mar 14, 2026Updated last week
• cloud-copilot / iam-convert

  View on GitHub
  Convert JSON IAM Policies to other formats
  ☆26Mar 14, 2026Updated last week
• mchaffe / cloudprefixes

  View on GitHub
  Recon tool to query cloud prefixes for services associated with an IP address
  ☆23Oct 2, 2024Updated last year
• cloud-copilot / iam-data

  View on GitHub
  Daily Updates of AWS IAM Data
  ☆22Mar 14, 2026Updated last week
• wolfeidau / aws-billing-store

  View on GitHub
  This project automates setup of Cost and Usage Reports (CUR) in a billing account with an Athena table enabling querying of the latest da…
  ☆13Feb 27, 2026Updated 3 weeks ago
• hotnops / apeman

  View on GitHub
  AWS Attack Path Management Tool - Walking on the Moon
  ☆263Dec 5, 2024Updated last year
• tenable / hidden-services-revealer

  View on GitHub
  ☆40Aug 2, 2024Updated last year
• offensive-actions / terraform-provider-statefile-rce

  View on GitHub
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆62Jan 25, 2025Updated last year
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆135Oct 23, 2023Updated 2 years ago
• aws-samples / automated-role-entitlements-in-aws-iam-identity-center

  View on GitHub
  This solution will help you automate user group assignment to permission sets in AWS IAM Identity center for accessing any or all AWS acc…
  ☆25Mar 24, 2025Updated 11 months ago
• welldone-cloud / aws-lint-iam-policies

  View on GitHub
  Runs IAM policy linting and security checks against either a single AWS account or multiple member accounts of an AWS Organization.
  ☆152Dec 21, 2025Updated 3 months ago
• cloud-copilot / iam-collect

  View on GitHub
  Collect IAM information from all your AWS organization, accounts, and resources.
  ☆88Updated this week
• cloud-copilot / iam-simulate

  View on GitHub
  An IAM Simulator that outputs detailed explains of how a request was evaluated.
  ☆100Mar 14, 2026Updated last week
• FogSecurity / finders-keypers

  View on GitHub
  Finders Keypers: AWS KMS Encryption Key Usage and Blast Radius Finder
  ☆45Aug 13, 2025Updated 7 months ago
• ayushpriya10 / IMDShift

  View on GitHub
  ☆55Apr 25, 2023Updated 2 years ago
• iann0036 / polai

  View on GitHub
  A Cedar policy language lexer, parser & evaluator
  ☆15Jul 3, 2023Updated 2 years ago
• tobilg / aws-iam-data

  View on GitHub
  This repository contains the full dataset of AWS IAM data (services, actions, resource types and conditions keys). It's updated on a dail…
  ☆68Updated this week
• aws-samples / aws-organized

  View on GitHub
  ☆22Oct 18, 2023Updated 2 years ago
• gemini-oss / starfleet

  View on GitHub
  Whole-infrastructure automation tooling for AWS
  ☆43Aug 22, 2025Updated 7 months ago
• Fennerr / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆76May 27, 2024Updated last year
• HarshVaragiya / aws-redteam-kit

  View on GitHub
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆33Oct 14, 2024Updated last year
• cloud-copilot / cli

  View on GitHub
  A typesafe CLI argument parser and help content generator.
  ☆16Mar 14, 2026Updated last week
• zoph-io / subnet-watcher

  View on GitHub
  AWS VPC Subnets Watcher
  ☆80Aug 23, 2023Updated 2 years ago
• OID-See / OID-See

  View on GitHub
  OID-See is an identity attack surface mapping tool that models OAuth trust, persistence, and impersonation paths in Entra using a graph-b…
  ☆33Jan 19, 2026Updated 2 months ago
• latacora / latacora-service-control-policies

  View on GitHub
  Service Control Policies that have been Latacora recommended all wrapped up in terraform that is easy to attach to an OU.
  ☆27May 24, 2024Updated last year
• adanalvarez / HoneyTrail

  View on GitHub
  Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…
  ☆51Nov 16, 2024Updated last year
• alemuro / tfiam

  View on GitHub
  Terraform IAM policy generator tool
  ☆13Jun 16, 2021Updated 4 years ago
• SecurityRunners / CloudCommotion

  View on GitHub
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆146Jun 18, 2024Updated last year
• PankajMoolrajani / access-snipper

  View on GitHub
  Automated least-privilege enforcement for AWS IAM. Analyzes CloudTrail data to compute permission utilization metrics and generates polic…
  ☆13Jan 12, 2026Updated 2 months ago
• cds-snc / sre-bot

  View on GitHub
  Slack bot for site reliability engineering
  ☆11Updated this week
• grahamhelton / IMDSpoof

  View on GitHub
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆106Nov 24, 2023Updated 2 years ago
• towardsthecloud / aws-cloudformation-starter-kit

  View on GitHub
  Production-ready AWS CloudFormation starter kit with secure OIDC authentication, automated CI/CD, and security scanning. Deploy stacks in…
  ☆27Feb 27, 2026Updated 3 weeks ago
• kevinreddot / forsh

  View on GitHub
  Shell intended for forwarding-only ssh connection via jumphost
  ☆11Jun 27, 2018Updated 7 years ago
• yanilov / control-tags

  View on GitHub
  Scalable integrity framework for ABAC on AWS
  ☆56Mar 14, 2025Updated last year
• trek10inc / sfn-yaml-macro

  View on GitHub
  DEPRECATED - An AWS CloudFormation macro to allow the definition of Amazon States Language in YAML within a CloudFormation template
  ☆16Aug 23, 2021Updated 4 years ago
• kisst / CFN-CR-PythonLambdaLayer

  View on GitHub
  CloudFormation Custom Resource to build Lambda layers for python scripts based on the requirements.txt
  ☆13Sep 2, 2019Updated 6 years ago
• avishayil / cf-signer

  View on GitHub
  Tool for signing and verifying the integrity of CloudFormation templates
  ☆15Feb 16, 2023Updated 3 years ago
• aws-samples / single-stage-aws-iam-identity-center-pipeline

  View on GitHub
  A solution designed to simplify AWS Identity Center (SSO) management using simple JSON/YAML inputs.
  ☆16Jul 31, 2025Updated 7 months ago