https://github.com/dafthack/CloudPentestCheatsheets/blob/master/cheatsheets/AWS.md
List of IAM Users :
aws iam list-users
List the IAM groups that the specified IAM user belongs to :
aws iam list-groups-for-user --user-name user-name
List all manages policies that are attached to the specified IAM user :
aws iam list-attached-user-policies --user-name user-name
Lists the names of the inline policies embedded in the specified IAM user :
aws iam list-user-policies --user-name user-name
List of IAM Groups:
aws iam list-groups
Lists all managed policies that are attached to the specified IAM Group :
aws iam list-attached-group-policies --group-name group-name
List the names of the inline policies embedded in the specified IAM Group:
aws iam list-group-policies --group-name group-name
List of IAM Roles :
aws iam list-roles
Lists all managed policies that are attached to the specified IAM role :
aws iam list-attached-role-policies --role-name role-name
List the names of the inline policies embedded in the specified IAM role :
aws iam list-role-policies --role-name role-nam
List of IAM Policies :
aws iam list-policies
Retrieves information about the specified managed policy :
aws iam get-policy --policy-arn policy-arn
Lists information about the versions of the specified manages policy :
aws iam list-policy-versions --policy-arn policy-arn
Retrieved information about the specified version of the specified managed policy :
aws iam get-policy-version --policy-arn policy-arn --version-id version-id
Retrieves the specified inline policy document that is embedded on the specified IAM user / group / role :
aws iam get-user-policy --user-name user-name --policy-name policy-name
aws iam get-group-policy --group-name group-name --policy-name policy-name
aws iam get-role-policy --role-name role-name --policy-name policy-name