nccgroup/PMapper external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nccgroup/PMapper

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nccgroup/PMapper)

Close

nccgroup / PMapperView on GitHubMore

• External links
• Readme badge

A tool for quickly evaluating IAM permissions in AWS.

☆1,541Aug 2, 2024Updated last year

Alternatives and similar repositories for PMapper

Users that are interested in PMapper are comparing it to the libraries listed below

• salesforce / cloudsplaining

  View on GitHub
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,184Feb 20, 2026Updated last week
• ReversecLabs / awspx

  View on GitHub
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆994Oct 4, 2022Updated 3 years ago
• duo-labs / cloudtracker

  View on GitHub
  CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
  ☆907Dec 17, 2021Updated 4 years ago
• RhinoSecurityLabs / pacu

  View on GitHub
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆5,073Updated this week
• nccgroup / aws-inventory

  View on GitHub
  Discover resources created in an AWS account.
  ☆735Apr 5, 2024Updated last year
• duo-labs / parliament

  View on GitHub
  AWS IAM linting library
  ☆1,109Jan 7, 2026Updated last month
• nccgroup / ScoutSuite

  View on GitHub
  Multi-Cloud Security Auditing Tool
  ☆7,551Sep 23, 2025Updated 5 months ago
• salesforce / policy_sentry

  View on GitHub
  IAM Least Privilege Policy Generator
  ☆2,136Feb 8, 2026Updated 2 weeks ago
• toniblyx / my-arsenal-of-aws-security-tools

  View on GitHub
  List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
  ☆9,405Oct 16, 2025Updated 4 months ago
• joshlarsen / aws-recon

  View on GitHub
  Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
  ☆554Jul 13, 2025Updated 7 months ago
• flosell / trailscraper

  View on GitHub
  A command-line tool to get valuable information out of AWS CloudTrail
  ☆830Updated this week
• andresriancho / enumerate-iam

  View on GitHub
  Enumerate the permissions associated with AWS credential set
  ☆1,219Feb 5, 2024Updated 2 years ago
• duo-labs / cloudmapper

  View on GitHub
  CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
  ☆6,260Jul 15, 2024Updated last year
• RhinoSecurityLabs / cloudgoat

  View on GitHub
  CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
  ☆3,487Feb 12, 2026Updated 2 weeks ago
• BishopFox / cloudfox

  View on GitHub
  Automating situational awareness for cloud penetration tests.
  ☆2,295Updated this week
• prowler-cloud / prowler

  View on GitHub
  Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…
  ☆13,103Updated this week
• carnal0wnage / weirdAAL

  View on GitHub
  WeirdAAL (AWS Attack Library)
  ☆835Jan 13, 2025Updated last year
• cyberark / SkyArk

  View on GitHub
  SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
  ☆906Dec 17, 2024Updated last year
• ReversecLabs / IAMSpy

  View on GitHub
  ☆229Updated this week
• aquasecurity / cloudsploit

  View on GitHub
  Cloud Security Posture Management (CSPM)
  ☆3,704Feb 20, 2026Updated last week
• RhinoSecurityLabs / AWS-IAM-Privilege-Escalation

  View on GitHub
  A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.
  ☆924Jul 25, 2019Updated 6 years ago
• Netflix-Skunkworks / policyuniverse

  View on GitHub
  Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.
  ☆447Jun 21, 2024Updated last year
• SummitRoute / aws_exposable_resources

  View on GitHub
  Resource types that can be publicly exposed on AWS
  ☆331Feb 23, 2022Updated 4 years ago
• BishopFox / iam-vulnerable

  View on GitHub
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆546Sep 11, 2025Updated 5 months ago
• dagrz / aws_pwn

  View on GitHub
  A collection of AWS penetration testing junk
  ☆1,220Aug 30, 2023Updated 2 years ago
• cartography-cncf / cartography

  View on GitHub
  Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…
  ☆3,729Updated this week
• Netflix / repokid

  View on GitHub
  AWS Least Privilege for Distributed, High-Velocity Deployment
  ☆1,148Nov 24, 2025Updated 3 months ago
• SecurityFTW / cs-suite

  View on GitHub
  Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
  ☆1,167Dec 8, 2022Updated 3 years ago
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆283Nov 27, 2025Updated 3 months ago
• nccgroup / sadcloud

  View on GitHub
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆752Oct 14, 2023Updated 2 years ago
• DataDog / stratus-red-team

  View on GitHub
  Granular, Actionable Adversary Emulation for the Cloud
  ☆2,266Feb 13, 2026Updated 2 weeks ago
• ReversecLabs / leonidas

  View on GitHub
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆605Nov 28, 2024Updated last year
• rams3sh / Aaia

  View on GitHub
  AWS Identity and Access Management Visualizer and Anomaly Finder
  ☆297Jan 23, 2026Updated last month
• easttimor / aws-incident-response

  View on GitHub
  ☆374Feb 23, 2024Updated 2 years ago
• willbengtson / trailblazer-aws

  View on GitHub
  Blazing CloudTrail since 2018
  ☆138Jan 27, 2019Updated 7 years ago
• turnerlabs / antiope

  View on GitHub
  AWS Inventory and Compliance Framework
  ☆224Jul 12, 2023Updated 2 years ago
• arkadiyt / aws_public_ips

  View on GitHub
  Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS services
  ☆640Apr 29, 2021Updated 4 years ago
• RhinoSecurityLabs / ccat

  View on GitHub
  Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
  ☆646Nov 21, 2019Updated 6 years ago
• Azure / Stormspotter

  View on GitHub
  Azure Red Team tool for graphing Azure and Azure Active Directory objects
  ☆1,684Jan 8, 2024Updated 2 years ago