AI-Assisted Cloud Config Risk Scanner

What This Tool Does

Analyzes AWS configuration files (IAM policies, S3 configs, Terraform, CloudFormation) to identify common security risks and misconfigurations.

Wildcard Permissions (*:*) - Overly broad access that grants unrestricted control
Public Access - Resources exposed to the internet (0.0.0.0/0, public flags)
Hardcoded Secrets - Credentials, API keys, or tokens embedded in configuration
Insecure CIDR Ranges - Network rules allowing access from anywhere