Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature request: flag accounts containing IAM Users #1574

Open
rdegraaf opened this issue Oct 11, 2023 · 0 comments
Open

Feature request: flag accounts containing IAM Users #1574

rdegraaf opened this issue Oct 11, 2023 · 0 comments
Labels
enhancement New feature or request

Comments

@rdegraaf
Copy link

Is your feature request related to a problem? Please describe.

The presence of IAM Users is not necessarily a problem: Users are a totally legitimate way to achieve various goals. However, Roles are considered a better way to achieve most of those goals in most contexts. In an account whose external access is managed through some SSO system, there should normally be no Users. IAM Users in such an environment are, as often than not, either old and forgotten or created by some dev looking for a shortcut.

Describe the solution you'd like

ScoutSuite should flag the presence of IAM Users so that a reviewer can verify that they are appropriate given the account's access control regime and requirements, and that they are properly managed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@rdegraaf