Learn From IAM Resources
A carefully curated list of online content, tools, and useful links to help guide and support your IAM learning path.

IAM Legend
AWS IAM actions autocomplete, documentation and wildcard resolution for Visual Studio Code. Supports Serverless Framework, AWS SAM, CloudFormation and Terraform.
Added on Mar 01, 2022 by Olympia Trumbower
PluralSight IAM Skills Path
Identity and Access Management on AWS is an integral part of ensuring the correct people have access to the appropriate services, applications, and organizations. Learn IAM from Brian Eiler
Added on Jan 24, 2022 by Kyler Middleton
permissions.cloud
From IAM mastermind Ian Mckay, this website is a comprehensive dataset, gathered within IAM Dataset, of all IAM permissions across AWS, GCP, and Azure.
Added on Jan 19, 2022 by Olympia Trumbower
AWS Accounts as Security Boundaries
Matt Fuller (Stripe) compiled an incredibly comprehensive list of all the methods to use AWS accounts as security boundaries, and more importantly, how to get around them
Added on Jan 19, 2022 by Olympia Trumbower
AWS IAM Privilege Escalation Techniques
From Hacking in the Cloud, check out these common techniques that can be leveraged to escalate privileges in an AWS account. We recommend pairing with IAM Vulnerable (Open Source Tool) for a good time.
Added on Jan 19, 2022 by Olympia Trumbower
Security Logging in Cloud Environments - AWS
A comprehensive guide from Marco Lancini (CloudSecList) to help Security teams maintain visibility across multi-account AWS environments via logging, monitoring, and alerting.
Added on Jan 19, 2022 by Olympia Trumbower
Principal Mapper
Principal Mapper (PMapper) is a script and library for identifying risks in the configuration of AWS Identity and Access Management (IAM) for an AWS account or an AWS organization
Added on Jan 19, 2022 by Olympia Trumbower
AWS Access Keys - A Reference
A comprehensive reference guide to AWS Access Keys including what they are, how to identify different types, and where you're likely to find them.
Added on Nov 02, 2021 by Ivan Dwyer
Amazon DynamoDB IAM Policies
A selection of example Amazon DynamoDB and DAX IAM policies with more restrictive security that you should be using instead of the official AWS Managed policies for DynamoDB.
Added on Nov 02, 2021 by Ivan Dwyer
IAM Access Analyzer policy validation
This implementation demonstrates the AWS Identity and Access Management (IAM) Access Analyzer policy validation capability.
Added on Nov 02, 2021 by Ivan Dwyer
Cloudsplaining on AWS Managed Policies
This is a tool that automatically downloads and keeps a local copy of all AWS IAM Managed Policies, and also runs Cloudsplaining on each.
Added on Nov 02, 2021 by Ivan Dwyer
Quiet Riot
An enumeration tool for scalable, unauthenticated validation of AWS principals; including AWS Acccount IDs, root e-mail addresses, users, and roles.
Added on Nov 02, 2021 by Ivan Dwyer
Get the IAM Pulse Check Newsletter
We send out a periodic newsletter full of tips & tricks, contributions from the community, commentary on the industry, relevant social posts, and more.
Checkout past issues for a sampling of the goods.