Learn From IAM Resources

A carefully curated list of online content, tools, and useful links to help guide and support your IAM learning path.

IAM Legend

AWS IAM actions autocomplete, documentation and wildcard resolution for Visual Studio Code. Supports Serverless Framework, AWS SAM, CloudFormation and Terraform.

Added on Mar 01, 2022 by Olympia Trumbower

PluralSight IAM Skills Path

Identity and Access Management on AWS is an integral part of ensuring the correct people have access to the appropriate services, applications, and organizations. Learn IAM from Brian Eiler

Added on Jan 24, 2022 by Kyler Middleton

permissions.cloud

From IAM mastermind Ian Mckay, this website is a comprehensive dataset, gathered within IAM Dataset, of all IAM permissions across AWS, GCP, and Azure.

Added on Jan 19, 2022 by Olympia Trumbower

AWS Accounts as Security Boundaries

Matt Fuller (Stripe) compiled an incredibly comprehensive list of all the methods to use AWS accounts as security boundaries, and more importantly, how to get around them

Added on Jan 19, 2022 by Olympia Trumbower

AWS IAM Privilege Escalation Techniques

From Hacking in the Cloud, check out these common techniques that can be leveraged to escalate privileges in an AWS account. We recommend pairing with IAM Vulnerable (Open Source Tool) for a good time.

Added on Jan 19, 2022 by Olympia Trumbower

Security Logging in Cloud Environments - AWS

A comprehensive guide from Marco Lancini (CloudSecList) to help Security teams maintain visibility across multi-account AWS environments via logging, monitoring, and alerting.

Added on Jan 19, 2022 by Olympia Trumbower

Principal Mapper

Principal Mapper (PMapper) is a script and library for identifying risks in the configuration of AWS Identity and Access Management (IAM) for an AWS account or an AWS organization

Added on Jan 19, 2022 by Olympia Trumbower

AWS Access Keys - A Reference

A comprehensive reference guide to AWS Access Keys including what they are, how to identify different types, and where you're likely to find them.

Added on Nov 02, 2021 by Ivan Dwyer

Amazon DynamoDB IAM Policies

A selection of example Amazon DynamoDB and DAX IAM policies with more restrictive security that you should be using instead of the official AWS Managed policies for DynamoDB.

Added on Nov 02, 2021 by Ivan Dwyer

IAM Access Analyzer policy validation

This implementation demonstrates the AWS Identity and Access Management (IAM) Access Analyzer policy validation capability.

Added on Nov 02, 2021 by Ivan Dwyer

Cloudsplaining on AWS Managed Policies

This is a tool that automatically downloads and keeps a local copy of all AWS IAM Managed Policies, and also runs Cloudsplaining on each.

Added on Nov 02, 2021 by Ivan Dwyer

Quiet Riot

An enumeration tool for scalable, unauthenticated validation of AWS principals; including AWS Acccount IDs, root e-mail addresses, users, and roles.

Added on Nov 02, 2021 by Ivan Dwyer

Get the IAM Pulse Check Newsletter

We send out a periodic newsletter full of tips & tricks, contributions from the community, commentary on the industry, relevant social posts, and more.

Checkout past issues for a sampling of the goods.