Fluid Attacks Database

Description

Detects AWS IAM users who have multiple active access keys configured. Having multiple active access keys for a single IAM user increases security risk by expanding the attack surface and making key rotation more difficult. AWS best practices recommend using only one active access key per user.

Weakness:

165 - Insecure service configuration - AWS

Category: Functionality Abuse

Detection Strategy

• Scans all IAM users in the AWS account

• Checks the number of access keys with 'Active' status for each user

• Reports a security finding when an IAM user has more than one active access key

Free trial

Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.