IAM
Find Creep/Drift¶
Tool | Description |
---|---|
gcp-iam-collector | Python script for collecting and visualising Google Cloud Platform IAM permissions |
gcp_sa_lister | Crawls your GCP Org and returns service accounts that have not been used in the past 90 days |
GCP API key rotation checker | Crawls your entire GCP Organization and inform you of any API keys over 90 days that need to be rotated |
gcp-iam-analyzer | Compares and analyzes GCP IAM roles |
STS¶
Tool | Description |
---|---|
ephemeral-iam |
|
jit-access | An AppEngine application that lets you manage just-in-time privileged access to Google Cloud projects |