![]() Install the dependencies python -m pip install -r requirements.txt Using Aaia Setting up Permissions in AWSĪaia would require following AWS permissions for collector script to collect relevant data from AWS iam:GenerateCredentialReport Hence Aaia is not supported for Windows OS. Note: Aaia depends on pyjq library which is not stable in windows currently. Clone this repository git clone Ĭd Aaia/ Create a virtual environment python3 -m venv env Activate the virtual environment source env/bin/activate Ensure these packages are present in the base system from where the collector script is being run. These packages are needed for Aaia_aws_collector.sh script. Install OS dependency Debian : apt-get install awscli jq Redhat / Fedora / Centos / Amazon Linux : yum install awscli jq Note: An example format is given in nf file already. Setup the username, password and bolt connection uri in nf file. Since "Aaia" also does more or less the same, hence the name. She can easily connect who is related to whom and how and give you the connection within a split second. In general, Aaia knows everything about the family. As long as this is true, attackers win." Why the name "Aaia"?Īaia in Tamil means grandma. It was inspired from the quote by think in lists. This is mostly useful if any complex comparision or logic has to be applied which otherwise would not be easy through cypher queries.Īaia was initially intended to be a tool to enumerate privelege esclation possibilities and find loop holes in AWS IAM. ![]() Since it is based on neo4j, one can query the graph using cypher queries to find the anomalies.Īaia also supports modules to programatically fetch data from neo4j database and process it in a custom fashion. This helps in identifying the outliers easily. Aaia (pronounced as shown here) helps in visualizing AWS IAM and organizations in a graph format with help of Neo4j.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |