ScoutSuite icon indicating copy to clipboard operation
ScoutSuite copied to clipboard

Published 20 hours ago verified publisher icon nccgroup

AWS Role RoleLastUsed information

Open seittema opened this issue 3 years ago • 1 comments

Is your feature request related to a problem? Please describe.

AWS Roles now support RoleLastUsed information (LastUsedDate and Region). This information can be valuable when looking at roles that are compliant as well as roles that are not being used or used in a long time which may indicate a stale role

https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.list_roles 'RoleLastUsed': { 'LastUsedDate': datetime(2015, 1, 1), 'Region': 'string' }

Describe the solution you'd like

I would like to have access to the LastUsedDate and Region for the Roles information

Describe alternatives you've considered

N/A

Additional context

Information coming back from the ListRoles API: https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.list_roles Blog post one some stuff: https://aws.amazon.com/blogs/security/identify-unused-iam-roles-remove-confidently-last-used-timestamp/

seittema avatar May 27 '21 17:05 seittema

Hello! I'd like to pick this up - could someone mark me as a contributor/assign this to me?

Thanks!

paigebelliveau avatar Aug 05 '21 18:08 paigebelliveau