v1.1.0 Release

This is a major update to Principal Mapper. It contains new functionality and bugfixes. Graphs generated with v1.0.X will not be compatible with this version, and will need to be recreated.

Improvements

• Switched to pulling data via GetAccountAuthorizationDetails per ( #26 ), thanks @danieladams456 !
• Overhaul of outputs and logging ( #36 )
• Implementation of resource policies ( #45 ), permission boundaries ( #41 ), session policies, and service control policies ( #69 ).
• Gathering MFA information ( #49 )
• New visualization for only privilege escalation paths, GraphML generation ( #52 )
• New findings ( #53 )
• Tracking tags, added clusters preset query ( #61 )
• Cross-account Edge support ( #62 ), thanks @christophetd !
• Fix for #64 , thanks @jfrazee216 !
• Fix for #66
• Whipped together a dockerfile ( #67 )
• AWS Organizations support ( #69 )
• Fix for #71
• Addition of the Endgame query ( #72 )
• Fix for #73 , thanks @Rackme !
• IAM Group inclusion fix ( #60 ), thanks @pr454nn4kum4r and @prasanna2av !
• IAM Group gathering fix ( #50 ), thanks @yehudacohen !

Changes

• Converted graph subcommand options into more subcommands (I.E. graph --create is now graph create)
• Addition of several keyword (Optional) parameters throughout the codebase to support new features
• Moved offline components of "edge identification" code into a separate function, enables infrastructure-as-code use-cases
• Moved example scripts and visualizations into separate directory

Regressions

• Per the logging changes, several instances of debug and output parameters for the PMapper codebase were removed.