Produces a report of all S3 buckets in your account and prints out a table to easily identify which buckets have open ACL's for read and write permissions.
- Python 3
- boto3
- argparse
- texttable
- awscli installed and configure for credentials
pip3 install -r requirements.txt
./s3permchk.py
To run on a different AWS profile to default:
./s3permchk.py --profile <YOUR_PROFILE_NAME>
+----------------------------------------------+-----------------+--------------------------------+--------------------------------+
| Bucket | Region | All Users Access | Auth'd Users |
+==============================================+=================+================================+================================+
| bucket_0 | eu-west-1 | [] | [] |
+----------------------------------------------+-----------------+--------------------------------+--------------------------------+
| bucket_1 | eu-west-2 | ['FULL_CONTROL'] | [] |
+----------------------------------------------+-----------------+--------------------------------+--------------------------------+
| bucket_1 | eu-west-1 | [] | ['READ'] |
+----------------------------------------------+-----------------+--------------------------------+--------------------------------+
| bucket_2 | eu-west-1 | ['READ', 'READ_ACP'] | [] |
+----------------------------------------------+-----------------+--------------------------------+--------------------------------+
......