Security Boundaries: Tracking, Preset Query, and Finding(s)

nccgroup / PMapper

A tool for quickly evaluating IAM permissions in AWS.

GNU Affero General Public License v3.0

1.37k stars 169 forks source link

Security Boundaries: Tracking, Preset Query, and Finding(s) #61

Closed ncc-erik-steringer closed 3 years ago

ncc-erik-steringer commented 3 years ago

With the ability to tag IAM Users (and Roles?) it would be nice to be able to be able to identify when principals belong to certain clusters and then identify when principals can access other principals outside their cluster. Good for use-cases where people use aws:PrincipalTag conditions.

[x] Add tags to Nodes
[x] Add preset (cluster?)

ncc-erik-steringer commented 3 years ago

Tossing the finding part.