IAM Policy Analyzer

Paste your IAM policy and get instant security findings. Detects 11 privilege escalation chains, defense evasion, missing conditions, and maps findings to CIS AWS, MITRE ATT&CK, and AWS FSBP.

100% client-side. Your policy never leaves your browser.

IAM Policy JSON

Try a sample:||

Paste your IAM policy above

Toc Consulting: AWS Security & Cloud Architecture

Securing your AWS estate?

Our team helps engineering teams secure and architect AWS the right way: assessment in week one, a prioritized action plan in week two.

Book a discovery call hello@tocconsulting.fr