Aws Permissive Policy
Description
Identifies AWS IAM policies that grant overly permissive access through wildcard permissions and unrestricted resource scopes. These policies are dangerous because they could allow unauthorized access to sensitive AWS resources, violating the principle of least privilege.
Detection Strategy
• Scans all IAM policies in the AWS account
• Flags a policy as vulnerable if it contains statements that have ALL of these conditions: - Effect is set to 'Allow' - Action contains wildcards like '*' - Resource is set to '*' (all resources)
• Reports each policy statement that combines unrestricted actions with unrestricted resources, capturing both the overly permissive actions and resource specifications
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.