ncc-erik-steringer
commented
3 years ago Paging @kmcquade, would appreciate if you dropped a list of services/actions you looked for.
Closed ncc-erik-steringer closed 3 years ago
ncc-erik-steringer
commented
3 years ago Paging @kmcquade, would appreciate if you dropped a list of services/actions you looked for.
There is/was a tool (Endgame) that made AWS API calls to open resources to world read/write access through the resource policies attached to those resources. Let's add a preset query that goes and searches the various cached resource policies and reports any users/roles that are able to open that resource to world read/write.