SkyEye GitHubSkyEye Preprint

v.1.0.0 Release!

A New Beginning

The Release of Version 1.0.0!

Hello everyone!

Today will be our first release of SkyEye version 1.0.0

If you are reading this you have already found your way to the GitBook wiki, good to see you! Here we will give you a rundown of all the new features of SkyEye as we release new versions. We will also provide documentation of all the existing modules and features to give you an idea of what SkyEye is capable of!

SkyEye Platform
SkyEye CLI

If you still have questions, feel free to send us your messages for help or to suggest new ideas and feature requests.

This release is mainly aimed at introducing SkyEye and its capability, to provide a solid baseline from which to work. In this GitBook, you will find out the documentations regarding core models of SkyEye and its IAM deep enumeration capability, as well as the scenario-based comparisons between SkyEye and prior-art IAM scanning tools for AWS cloud to demonstrate how SkyEye has significantly reduced the potential false negatives and improve overall accuracy.

SkyEye's Capabilities:

  • Multiple-Principal IAM Enumeration

    • Cross-Principal IAM Enumeration

    • Separate-Principal IAM Enumeration

  • Single-Principal IAM Enumeration

    • Integrating Policy Simulation

    • Integrating Fuzzing Capability

  • IAM Deep Enumeration Capabilities

    • Retrieval of In-Scope IAM Groups and In-Scope IAM Roles for User Principals

    • Retrieval of Inline Policies for User Principals

    • Retrieval of Attached Managed Policies for User Principals

    • Retrieval of Inline Policies for In-Scope IAM Groups

    • Retrieval of Attached Managed Policies for In-Scope IAM Groups

    • Retrieval of Inline Policies for In-Scope IAM Roles

    • Retrieval of Attached Managed Policies for In-Scope IAM Roles

    • Versions Fuzzing Algorithm to identify Available Policy Versions

    • Alternative Comprehensive Retrieval by iam:GetAccountAuthorizationDetails

    • Inverse Enumeration Model for Attached Managed Policy

  • Deep Comparison Model for Policy Documents of Active Version and Historical Versions

  • The Mapping with MITRE ATT&CK Matrix - Cloud

  • The Integration of Severity-level Classification: Low, Medium, High, Critical, PrivEsc_Vector

  • Logs & Portable Output

PreviousNewsNextSkyEye Framework Demo

Last updated