Skip to content

SecOps-Institute/AWS-S3-Buckets-Audit-Users

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits

Pipfile

Pipfile

 
 

Pipfile.lock

Pipfile.lock

 
 

README.md

README.md

 
 

aws-s3-user-access.py

aws-s3-user-access.py

 
 

requirements.txt

requirements.txt

 
 

Repository files navigation

AWS-S3-Buckets-Audit-Users

The script summarizes all the Users in your AWS Account regarding their S3 Bucket Privilleges

AWS Config and Permissions:

Use AWS Credentials as environment variables on the system. You can set the file manually also under ~/.aws/credentials. For example:

$ cat .aws/credentials 
[default]
aws_access_key_id = AKTRYYOURBESTTOCRACK
aws_secret_access_key = SHHH************************************

Permissions:

  • IAM ReadOnly
  • S3 ReadOnly

Code

Python 3.7 tested

Dependencies

  • pipenv if you want to run this in a pipenv shell

  • boto3

  • json

Example Output:

UserName: user1
    User Inline Policy: inline_policy_1
        S3 Bucket: arn:aws:s3:::s3bucket-1
            Action: s3:*
    User Inline Policy: managed_policy_1
        S3 Bucket: arn:aws:s3:::s3bucket_2
            Action: s3:*
    Group Name: group_1
        Inline Policy: group_inline_policy_1
            S3 Bucket: arn:aws:s3:::s3bucket_3
                Action: s3:*
    Group Name: group_2
        Managed Policy: group_managed_policy_1
            S3 Bucket: arn:aws:s3:::s3bucket_4
                Action: s3:*

About

Ever tried to summarise the User access to the S3 buckets in your AWS Account? Here is the tool that can help you do the same

Resources

Readme
Activity
Custom properties

Stars

2 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages