Skip to content

Commit

Permalink
tweak
Browse files Browse the repository at this point in the history
  • Loading branch information
@jenjoe22
jenjoe22 committed Dec 13, 2024
1 parent c8dff85 commit eb502fc
Showing 1 changed file with 1 addition and 5 deletions.
6 changes: 1 addition & 5 deletions ...ns/search-and-investigate/permissions-queries/permissions-query-attributes.adoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ This query retrieves all permissions granted to known vendors in the environment
config from iam where source.cloud.account.isvendor = true
----
+
The following example retrieves all vendor accounts that do not start with Red.
The following sample query retrieves all vendor accounts that do not start with Red.
+
----
config from iam where source.cloud.account DOES NOT START WITH 'Red' and source.cloud.account.isvendor = true
Expand Down Expand Up @@ -282,10 +282,6 @@ config from iam where grantedby.cloud.policy.id = 'arn:aws:iam::aws:policy/Admin
* *grantedby.cloud.policy.isExcessive*
* true
* false
Identifies excessive access in IAM policies (AWS IAM Policies/Azure Roles/GCP Roles) when including “*” in the action or scope sections.
* *grantedby.cloud.policy.name*
Expand Down

0 comments on commit eb502fc

Please sign in to comment.