← All Tags
# security aws s3-bucket

2 links tagged with all of: security + aws + s3-bucket

Click any tag below to further narrow down your results

+ iam-roles (1) + vulnerabilities (1) + vulnerability (1) + trusted-advisor (1)

Links

AWS Trusted Advisor Tricked Into Showing Unprotected S3 Buckets as Secure - SecurityWeek

A vulnerability in AWS Trusted Advisor allowed attackers to bypass checks for unprotected S3 buckets, misleading users about their security status. AWS has since addressed the issue and advised customers to review their S3 bucket permissions to align with security best practices.
Saved by tldr-importer · Last saved October 29, 2025 · 4 min read
aws ✓ security ✓ s3-bucket ✓ + vulnerability + trusted-advisor

GitHub - zoph-io/kye: KYE: Know Your Enemies - Check external access on your AWS account

The tool analyzes IAM Role trust policies and S3 bucket policies in AWS accounts to identify third-party vendor access. It uses a reference list of known AWS accounts to highlight potential vulnerabilities, such as IAM roles lacking the ExternalId condition, and generates a detailed markdown report of the findings. Users can customize trusted accounts to differentiate between internal and external access.
Saved by tldr-importer · Last saved October 29, 2025 · 3 min read
aws ✓ security ✓ + iam-roles s3-bucket ✓ + vulnerabilities