🚀Launch Week 07, January 27th - 31st, 2025🚀

Plugins Docs Home

turbot/steampipe-mod-aws-insights

0Benchmarks

0Variables

AWS Account Report AWS ACM Certificate Age Report AWS ACM Certificate Dashboard AWS ACM Certificate Detail AWS API Gateway V2 API Age Report AWS API Gateway V2 API Dashboard AWS API Gateway V2 API Detail AWS Backup Plan Detail AWS Backup Vault Detail AWS CloudFront Distribution Dashboard AWS CloudFront Distribution Detail AWS CloudTrail Trail Dashboard AWS CloudTrail Trail Detail AWS CloudTrail Trail Encryption Report AWS CloudTrail Trail Logging Report AWS CloudWatch Log Group Detail AWS CodeBuild Project Age Report AWS CodeBuild Project Dashboard AWS CodeBuild Project Detail AWS CodeCommit Repository Age Report AWS CodeCommit Repository Dashboard AWS CodeCommit Repository Detail AWS CodePipeline Pipeline Age Report AWS CodePipeline Pipeline Dashboard AWS CodePipeline Pipeline Detail AWS DAX Cluster Detail AWS DynamoDB Table Age Report AWS DynamoDB Table Dashboard AWS DynamoDB Table Detail AWS DynamoDB Table Encryption Report AWS EBS Snapshot Age Report AWS EBS Snapshot Dashboard AWS EBS Snapshot Detail AWS EBS Snapshot Public Access Report AWS EBS Volume Age Report AWS EBS Volume Dashboard AWS EBS Volume Detail AWS EBS Volume Encryption Report AWS EC2 AMI Detail AWS EC2 Application Load Balancer Detail AWS EC2 Classic Load Balancer Detail AWS EC2 Gateway Load Balancer Detail AWS EC2 Instance Age Report AWS EC2 Instance Dashboard AWS EC2 Instance Detail AWS EC2 Instance Public Access Report AWS EC2 Network Interface Detail AWS EC2 Network Load Balancer Detail AWS ECR Repository Age Report AWS ECR Repository Dashboard AWS ECR Repository Detail AWS ECS Cluster Dashboard AWS ECS Cluster Detail AWS ECS Service Detail AWS ECS Task Definition Detail AWS EFS File System Age Report AWS EFS File System Dashboard AWS EFS File System Detail AWS EKS Cluster Age Report AWS EKS Cluster Dashboard AWS EKS Cluster Detail AWS ElastiCache Cluster Detail AWS ElastiCache Cluster Node Age Report AWS ElastiCache Cluster Node Dashboard AWS ElastiCache Cluster Node Detail AWS EMR Cluster Age Report AWS EMR Cluster Dashboard AWS EMR Cluster Detail AWS EventBridge Rule Detail AWS IAM Access Key Age Report AWS IAM Action Glob Report AWS IAM Credential Report AWS IAM Group Dashboard AWS IAM Group Detail AWS IAM Policy Detail AWS IAM Role Dashboard AWS IAM Role Detail AWS IAM Root Access Report AWS IAM User Dashboard AWS IAM User Detail AWS IAM User Excessive Privilege Report AWS IAM User MFA Report AWS KMS CMK Lifecycle Report AWS KMS Key Age Report AWS KMS Key Dashboard AWS KMS Key Detail AWS Lambda Function Dashboard AWS Lambda Function Detail AWS Lambda Function Encryption Report AWS Lambda Function Public Access Report AWS OpenSearch Domain Detail AWS RDS DB Cluster Age Report AWS RDS DB Cluster Dashboard AWS RDS DB Cluster Detail AWS RDS DB Cluster Encryption Report AWS RDS DB Cluster Logging Report AWS RDS DB Cluster Snapshot Age Report AWS RDS DB Cluster Snapshot Dashboard AWS RDS DB Cluster Snapshot Detail AWS RDS DB Cluster Snapshot Encryption Report AWS RDS DB Instance Age Report AWS RDS DB Instance Dashboard AWS RDS DB Instance Detail AWS RDS DB Instance Encryption Report AWS RDS DB Instance Logging Report AWS RDS DB Instance Public Access Report AWS RDS DB Instance Snapshot Age Report AWS RDS DB Instance Snapshot Dashboard AWS RDS DB Instance Snapshot Detail AWS RDS DB Instance Snapshot Encryption Report AWS Redshift Cluster Age Report AWS Redshift Cluster Dashboard AWS Redshift Cluster Detail AWS Redshift Cluster Encryption Report AWS Redshift Cluster Logging Report AWS Redshift Cluster Public Access Report AWS Redshift Snapshot Detail AWS S3 Bucket Age Report AWS S3 Bucket Dashboard AWS S3 Bucket Detail AWS S3 Bucket Encryption Report AWS S3 Bucket Lifecycle Report AWS S3 Bucket Logging Report AWS S3 Bucket Public Access Report AWS SNS Topic Dashboard AWS SNS Topic Detail AWS SNS Topic Encryption Report AWS SQS Queue Dashboard AWS SQS Queue Detail AWS SQS Queue Encryption Report AWS VPC Dashboard AWS VPC Detail AWS VPC Elastic IP Detail AWS VPC Flow Logs Detail AWS VPC Flow Logs Report AWS VPC Security Group Dashboard AWS VPC Security Group Detail AWS VPC Subnet Detail

Dashboard: AWS IAM Credential Report

This report answers the following questions:

Which users do not have a password?
What is the age of the password?
When was the password last changed?
When were the access keys last used?
Does the user have signing certificates?
How old are the signing certificates and when were they last rotated?

This dashboard contains 1 table and 2 texts.

Usage

Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-aws-insights

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select AWS IAM Credential Report dashboard.

You could also snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe dashboard run aws_insights.dashboard.iam_credential_report --share

Queries

This dashboard uses the the following queries:

select
  user_name as "User Name",
  user_arn as "User ARN",

  password_enabled as "Password Enabled",
  mfa_active as "MFA Active",
  password_status as "Password Status",
  now()::date - password_last_changed::date as "Password Age in Days",
  password_last_changed as "Password Changed Timestamp",
  date_trunc('day',age(now(),password_last_used))::text as "Password Last Used",
  password_last_used as "Password Last Used Timestamp",
  date_trunc('day',age(now(),password_next_rotation))::text as "Next Password Rotation",
  password_next_rotation "Next Password Rotation Timestamp",

  access_key_1_active as "Access Key 1 Active",
  now()::date - access_key_1_last_rotated::date as "Key 1 Age in Days",
  access_key_1_last_rotated as "Key 1 Last Rotated",
  date_trunc('day',age(now(),access_key_1_last_used_date))::text as  "Key 1 Last Used",
  access_key_1_last_used_date as "Key 1 Last Used Timestamp",
  access_key_1_last_used_region as "Key 1 Last Used Region",
  access_key_1_last_used_service as "Key 1 Last Used Service",

  access_key_2_active as "Access Key 2 Active",
  now()::date - access_key_2_last_rotated::date as "Key 2 Age in Days",
  access_key_2_last_rotated as "Key 2 Last Rotated Timestamp",
  date_trunc('day',age(now(),access_key_2_last_used_date))::text as  "Key 2 Last Used",
  access_key_2_last_used_date as "Key 2 Last Used Timestamp",
  access_key_2_last_used_region as "Key 2 Last Used Region",
  access_key_2_last_used_service as "Key 2 Last Used Service",

  cert_1_active as "Cert 1 Active",
  now()::date - cert_1_last_rotated::date as "Cert 1 Age in Days",
  cert_1_last_rotated "Cert 1 Last Rotated",

  cert_2_active as "Cert 2 Active",
  now()::date - cert_2_last_rotated::date as "Cert 2 Age in Days",
  cert_2_last_rotated as "Cert 2 Last Rotated",

  a.title as "Account",
  r.account_id as "Account ID"

from
  aws_iam_credential_report as r,
  aws_account as a
where
  a.account_id = r.account_id
order by
  user_name;

Tags

category = Credential Report

service = AWS/IAM