We have already enumerated our own users' privileges, as well as every other user's and the roles within the account we are targeting. We can now pass the information that the iam__enum_permissions module generated to the iam__privesc_scan module to check for any instances of privilege escalation within the account. We'll first use the --offline argument so that the module knows we are checking everyone's privilege escalation paths. Without that argument, it will only check our own user's privilege escalation paths and then try to exploit them to gain escalated access to the environment. The following screenshot shows the output of the iam__privesc_scan module, where it has identified multiple users who already have administrator ...