rolescan

Rolescan is a term used in information security to describe a class of tools and processes that identify and analyze roles and their associated permissions within an identity and access management environment. The main goal is to enumerate who can perform which actions, how roles are granted, and where privilege escalation pathways may exist.

Most implementations focus on cloud IAM systems such as AWS IAM, Azure RBAC, and Google Cloud IAM,

Outputs commonly include a risk score or remediation recommendations, potential privilege escalations, and export formats like

Limitations include reliance on granted read permissions to IAM configuration and policies; some authorization might be

See also: identity and access management, least privilege, privilege escalation, role-based access control, cloud security auditing.