{"id":13680373,"url":"https://github.com/WithSecureLabs/awspx","last_synced_at":"2025-04-29T23:31:16.465Z","repository":{"id":38360350,"uuid":"225895956","full_name":"WithSecureLabs/awspx","owner":"WithSecureLabs","description":"A graph-based tool for visualizing effective access and resource relationships in AWS environments.","archived":false,"fork":false,"pushed_at":"2022-10-04T10:27:47.000Z","size":5859,"stargazers_count":924,"open_issues_count":10,"forks_count":102,"subscribers_count":27,"default_branch":"master","last_synced_at":"2024-12-07T19:03:00.062Z","etag":null,"topics":["aws","aws-security","graph-theory","pentesting"],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/WithSecureLabs.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-12-04T15:15:44.000Z","updated_at":"2024-12-05T19:01:53.000Z","dependencies_parsed_at":"2023-01-19T02:25:13.519Z","dependency_job_id":null,"html_url":"https://github.com/WithSecureLabs/awspx","commit_stats":null,"previous_names":["fsecurelabs/awspx"],"tags_count":10,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WithSecureLabs%2Fawspx","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WithSecureLabs%2Fawspx/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WithSecureLabs%2Fawspx/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WithSecureLabs%2Fawspx/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/WithSecureLabs","download_url":"https://codeload.github.com/WithSecureLabs/awspx/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":251599978,"owners_count":21615615,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","aws-security","graph-theory","pentesting"],"created_at":"2024-08-02T13:01:16.430Z","updated_at":"2025-04-29T23:31:11.447Z","avatar_url":"https://github.com/WithSecureLabs.png","language":"Python","funding_links":[],"categories":["Python","Infrastructure"],"sub_categories":[],"readme":"\u003cimg src=\"https://raw.githubusercontent.com/wiki/FSecureLABS/awspx/uploads/Awspx.svg\" width=\"600px\"\u003e\n\n\u003e auspex [ˈau̯s.pɛks] noun: An augur of ancient Rome, especially one who interpreted omens derived from the observation of birds.\n\n![](https://img.shields.io/github/license/FSecureLABS/awspx)\n![](https://img.shields.io/github/v/release/FSecureLABS/awspx)\n![](https://img.shields.io/github/contributors/FSecureLABS/awspx)\n\n# Overview\n\n**awspx** is a graph-based tool for visualizing effective access and resource relationships within AWS. It resolves policy information to determine *what* actions affect *which* resources, while taking into account how these actions may be combined to produce attack paths. Unlike tools like [Bloodhound](https://github.com/BloodHoundAD/BloodHound), awspx requires permissions to function — it is not expected to be useful in cases where these privileges have not been granted.\n\n### Table of contents \n\n- [Getting Started](#getting-started)\n  - [Installation](#installation)\n  - [Usage](#usage)\n- [Contributing](#contributing)\n- [License](#license)\n\n*For more information, checkout the [awspx Wiki](https://github.com/FSecureLABS/awspx/wiki)*\n\n# Getting Started\n\n*For detailed installation instructions, usage, and answers to frequently asked questions, see sections: [Setup](https://github.com/FSecureLABS/awspx/wiki/Setup); [Data Collection](https://github.com/FSecureLABS/awspx/wiki/Data-Collection) and [Exploration](https://github.com/FSecureLABS/awspx/wiki/Data-Exploration); and [FAQs](https://github.com/FSecureLABS/awspx/wiki/FAQs), respectively.*\n\n## Installation \n\n**awspx** can be [installed](https://github.com/FSecureLABS/awspx/wiki/Setup) on either Linux or macOS. *In each case [Docker](https://docs.docker.com/get-docker/) is required.*\n\n1. Clone this repo\n```bash\ngit clone https://github.com/FSecureLABS/awspx.git\n```\n2. Run the `INSTALL` script\n```bash\ncd awspx \u0026\u0026 ./INSTALL\n```\n\n## Usage \n\n**awspx** consists of two main components: the [**ingestor**](https://github.com/FSecureLABS/awspx/wiki/Data-Collection#ingestion), *which collects AWS account data*; and the [**web interface**](https://github.com/FSecureLABS/awspx/wiki/Data-Exploration#overview), *which allows you to explore it*. \n\n1. [Run the **ingestor**](https://github.com/FSecureLABS/awspx/wiki/Data-Collection#ingestion) against an account of your choosing. _You will be prompted for [credentials](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-configure.html#cli-quick-configuration)._\n\n    ```bash\n    awspx ingest\n    ```\n    _**OR** optionally forgo this step and [load the sample dataset](https://github.com/FSecureLABS/awspx/wiki/Data-Collection#zip-files) instead._\n    \n    ```bash\n    awspx db --load-zip sample.zip\n    awspx attacks\n    ```\n\n2. Browse to the **web interface** — *\u003chttp://localhost\u003e by default* — and [explore this environment](https://github.com/FSecureLABS/awspx/wiki/Data-Exploration##usage-examples). \n\n    \u003c/br\u003e\n    \u003cimg src=\"https://raw.githubusercontent.com/wiki/FSecureLABS/awspx/uploads/Awspx.gif\"\u003e\n\n# Contributing\n\nThis project is in its early days and there's still plenty that can be done. Whether its submitting a fix, identifying bugs, suggesting enhancements, creating or updating documentation, refactoring smell code, or even extending this list — all contributions help and are more than welcome. Please feel free to use your judgement and do whatever you think would benefit the community most.\n\n*See [Contributing](https://github.com/FSecureLABS/awspx/wiki/Contributing) for more information.*\n\n# License \n\n**awspx** is a graph-based tool for visualizing effective access and resource relationships within AWS. (C) 2018-2020 F-SECURE.\n\nThis program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.\n\nThis program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. \n\nYou should have received a copy of the GNU General Public License along with this program. If not, see \u003chttps://www.gnu.org/licenses/\u003e. \n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FWithSecureLabs%2Fawspx","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FWithSecureLabs%2Fawspx","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FWithSecureLabs%2Fawspx/lists"}