Ever wondered how much privileges you really need when using AWS. This tool helps you build a minimal permissions file for AWS.
- Setup a cloudtrail log according to this documentation
- Export the cloudtrail logs in json
- Run
./cloudtrailToAWSPrivileges -file cloudtrail.json > new-policy.json
- Run
aws iam create-policy --policy-name <fancy-policy-name> --policy-document file://new-policy.json