calmhavoc

## gist:d1c5f5b1c857732404a8a87284e0398b
aws sts get-caller-identity
aws iam get-user
aws iam list-users
aws iam list-groups
aws iam list-roles
aws iam list-policies
aws iam list-policies --scope Local


for x in $(aws iam list-groups |grep Arn | cut -d ":" -f2 | tr -d "'" | tr -d "," );do echo "[+] Checking $x";aws iam get-policy --policy-arn $x ;done

## scanning.md

      
              1 file
            
          
              0 forks
            
          
                0 comments
              
            
              1 star
            
          
                calmhavoc
                / scanning.md
            
            
              Last active
              January 22, 2026 01:18
            
          
    Note 1

# Note, to speed scans up, set a scan variable here and add it to nmap lines where desired, eg:

nmap_defaults="--max-rtt-timeout 100ms --min-hostgroup 64 --min-rate 1000 --max-retries 2"

# nmap -Pn -n -sS -p 21-23,111,137,445,80,443 -iL target_scope.txt -oG $projectdir/nmap/$custid.quickscan-tcp.gnmap $nmap_defaults 

Note 2
	aws sts get-caller-identity
	aws iam get-user
	aws iam list-users
	aws iam list-groups
	aws iam list-roles
	aws iam list-policies
	aws iam list-policies --scope Local


	for x in $(aws iam list-groups \|grep Arn \| cut -d ":" -f2 \| tr -d "'" \| tr -d "," );do echo "[+] Checking $x";aws iam get-policy --policy-arn $x ;done