A graph-based tool for visualizing effective access and resource relationships in AWS environments.
profile --create
creation bug--only-attacks
if specified--verbose
--verbose
(graphical output replaced with --pretty
)${A}.B
to ${A.B}
cli.py
(thanks @dmyates)KeyError
arising from SessionClientWrapper empty result set--database
ingestion input validationIndexError
(#41)OidcProvider
Principal supportz
label to docker volume mount options (#43) (thanks @unsubtleguy)--assume-role
ingestion (thanks @dmyates)?
expressions in resource-level permissionsrich
v10awspx
container checksawspx ingest
policy.py
list_user_mfa_devices
from IAM with --quick
IngestionManager
: decouples IAM
ingestorIngestor
: skips disqualified collections in advanceIAM
, S3
, EC2
, and Lambda
classesProfile
class (moved from cli.py
)Attacks
and Neo4j
from static to dynamic classes--verbose
CLI option to db
and attacks
$PATH
check and helper function to INSTALL
.--update
, --assume-role-duration
, and --quick
.Condition Keys
and Dependent Actions
properties.README.md
.Federated
principalsawspx
CLI output, argument names and descriptions.ACTIONS
and RESOURCES
dictionaries.ATTACKS
dictionary formatting and execution steps.nodejs
packages.sample.zip
dataset.update_actions.py
, CONTRIBUTING.md
, and images
directory content.