Prowler has introduced a new feature to detect obfuscated AWS IAM policies, addressing a security challenge highlighted by the Permiso team's "Sky Scalpel" tool. These obfuscation techniques, such as Unicode encoding and wildcard usage, allow potentially dangerous permissions to bypass security detections. The article details how Prowler's team tackled this issue by developing "py-iam-expand," a Python library that normalizes and expands IAM policies into a canonical form, making it easier to identify hidden threats. By integrating this tool, Prowler enhances its ability to detect full administrative access that might be concealed within complex policy structures, improving the overall security for its users. This development exemplifies the ongoing battle between evolving cloud security threats and the adaptive measures required to counter them.