AWS IAM Tracker
This project collects IAM actions, AWS APIs and managed policies from various public sources.
You can explore the data collected using the static site.
Collected data is published to the policies and services folders in this repo.
Thank you to alanakirby/aktion for originally having this idea and being gracious about me shamelessly ripping it off.
Stats
- Unique services: 370
- Unique actions: 15242
- Managed policies: 1106
Most common managed policy name prefixes:
Policy ARN | Count |
---|---|
arn:aws:iam::aws:policy/AWS* |
300 |
arn:aws:iam::aws:policy/Amazon* |
287 |
arn:aws:iam::aws:policy/aws-service-role/* |
245 |
arn:aws:iam::aws:policy/service-role/* |
174 |
arn:aws:iam::aws:policy/job-function/* |
7 |
Other | 93 |
The following table summarises the AWS APIs.
- The first column is the name of the API as far as IAM policies are concerned.
- The second column is IAM actions that exactly match the names of invokable APIs exposed by AWS.
- The third column is invokable APIs that don't have a corresponding IAM action.
- The fourth column is IAM actions that don't have a corresponding invokable API.
Most common action prefixes:
Prefix | Count |
---|---|
List |
2380 |
Get |
2150 |
Delete |
1733 |
Create |
1623 |
Describe |
1621 |
Update |
1378 |
Put |
428 |
Start |
334 |
Tag |
242 |
Untag |
239 |