Question 1

How does Aaia compare to CloudMapper for AWS security?

Accepted Answer

Aaia focuses on graph-based IAM analysis using Neo4j for deep relationship auditing, while CloudMapper offers broader network visualization. Aaia is better for pinpointing IAM anomalies, but CloudMapper might be more suited for overall infrastructure mapping.

Question 2

How to install Aaia on Ubuntu?

Accepted Answer

Install Docker for Neo4j, clone the repository, set up a virtual environment, install dependencies with pip, and configure AWS credentials. The README provides specific commands for Debian-based systems like Ubuntu.

Question 3

Can Aaia detect privilege escalation in AWS IAM?

Accepted Answer

Yes, Aaia is designed to identify privilege escalation paths through graph analysis, and the TODO list includes writing modules for 28 AWS escalation methods from RhinoSecurityLabs, though this is not yet implemented.

Question 4

Is Aaia compatible with Neo4j 4.x?

Accepted Answer

No, Aaia is only compatible with Neo4j v3.5.17 and earlier, as newer versions post v4.0 have changes that break compatibility with the current codebase.

Question 5

How to build a custom audit module for Aaia?

Accepted Answer

Use the provided sample module as a skeleton, write Python code to fetch data from Neo4j, and process it. However, the README admits that detailed documentation for module development is still on the TODO list.

Question 6

What AWS permissions are needed for Aaia?

Accepted Answer

Aaia requires IAM permissions like GenerateCredentialReport and GetAccountAuthorizationDetails, plus Organizations permissions if used. A full list is provided in the README under 'Setting up Permissions in AWS'.

Question 7

Does Aaia work with Azure or GCP?

Accepted Answer

No, Aaia is currently AWS-only, with a TODO to extend to other cloud providers, but there's no implementation yet, so it's not suitable for multi-cloud environments.

Aaia

What is Aaia?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions