AWS List Resources is a Python-based tool that utilizes the AWS Cloud Control API to enumerate and catalog resources present within specified AWS accounts and regions. The tool requires AWS credentials to be configured either through environment variables or by specifying a named profile using the optional --profile argument. Read-only IAM permissions are sufficient for operation. Key features include: - Support for scanning specific regions or all regions using the --regions parameter - Resource type filtering through --include-resource-types and --exclude-resource-types arguments - Wildcard support for resource type specifications - JSON output format for discovered resources - Recommendation to include us-east-1 region to capture global AWS service resources The tool accepts comma-separated lists for region and resource type specifications, allowing users to focus their discovery efforts on specific AWS services or exclude certain resource types from enumeration. Output is written to a JSON file containing the discovered resource inventory.
FEATURES
SIMILAR TOOLS
A deprecated Kubernetes workload policy enforcement tool that helped secure multi-tenant clusters through various security policies and configurations.
A command-line security auditing tool that performs Lynis-based security assessments across AWS, GCP, Azure, and DigitalOcean cloud platforms.
A community-driven repository of pre-built security analytics queries and rules for monitoring and detecting threats in Google Cloud environments across various log sources and activity types.
A tutorial demonstrating how to implement Kubernetes Engine security features to control application privileges through host access controls and network access policies.
Collection of Kubernetes manifests creating pods with elevated privileges for security testing.
A search engine for open Amazon S3 buckets and their contents, allowing users to search for files using keywords, filename extensions, and full path.
AWS Vault securely stores AWS IAM credentials in the operating system's keystore and generates temporary credentials for development environments.
HAWK is a multi-cloud antivirus scanning API that uses CLAMAV and YARA engines to detect malware in AWS S3, Azure Blob Storage, and GCP Cloud Storage objects.
KICS is an open-source Infrastructure as Code security scanner that detects vulnerabilities and misconfigurations through customizable queries and integrates with CI/CD pipelines.