Compétences cloud-penetration-testing
☁️

cloud-penetration-testing

Risque faible ⚙️ Commandes externes🌐 Accès réseau📁 Accès au système de fichiers

クラウドセキュリティ評価の実施

セキュリティ専門家は、Azure、AWS、GCP環境にわたって包括的なクラウドペネトレーションテスト機能が必要です。このスキルは、Reconnaissance、列挙、悪用、永続性テストのための構造化されたワークフロー明確な認可要件を提供します。

Prend en charge: Claude Codex Code(CC)
⚠️ 65 Médiocre
1

Télécharger le ZIP du skill

2

Importer dans Claude

Allez dans Paramètres → Capacités → Skills → Importer un skill

3

Activez et commencez à utiliser

Tester

Utilisation de "cloud-penetration-testing". Enumerate AWS S3 buckets and check for public access

Résultat attendu:

アクセスコントロールを含むS3バケットのリストを返し、公開アクセス可能なバケットを特定し、設定ミスの修正提案を提供

Utilisation de "cloud-penetration-testing". Check Azure AD for users with password in attributes

Résultat attendu:

属性に機密データを含むAzure ADユーザーを返し、どのプロパティに潜在的なシークレットが含まれているか表示

Utilisation de "cloud-penetration-testing". Access GCP metadata service for credential discovery

Résultat attendu:

侵害されたコンピューティングインスタンスからのGCPサービスアカウントトークンとメタデータを返す

Audit de sécurité

Risque faible
v1 • 2/25/2026

This skill contains cloud penetration testing commands and scripts commonly used in authorized security assessments. Static analysis flagged external command execution, network access, and metadata endpoint patterns - all standard elements of legitimate cloud security testing. The skill includes clear authorization requirements and is designed for security professionals. Findings are false positives in this context as they represent standard pen testing techniques for Azure, AWS, and GCP.

2
Fichiers analysés
826
Lignes analysées
10
résultats
1
Total des audits

Problèmes à risque élevé (4)

SKILL.md:20-36SKILL.md:80-98SKILL.md:143-174SKILL.md:253-269SKILL.md:275-286SKILL.md:337-395SKILL.md:443-475references/advanced-cloud-scripts.md:9-130references/advanced-cloud-scripts.md:148-190
External Command Execution
Skill contains numerous external command invocations using shell backticks and system() calls. These execute AWS CLI, Azure CLI, and GCP commands for security testing purposes. This is standard penetration testing practice but could be misused.
SKILL.md:263-268SKILL.md:339-342SKILL.md:383SKILL.md:401-402references/advanced-cloud-scripts.md:120-124
Cloud Metadata Service Access
Skill contains commands to access AWS, Azure, and GCP metadata endpoints (169.254.169.254). This is standard cloud security assessment technique for checking instance credentials and configuration.
SKILL.md:440-451SKILL.md:181references/advanced-cloud-scripts.md:242-272
Password Spraying Scripts
Skill contains password spraying tools and scripts for testing credential strength. This is a legitimate security testing technique but could be weaponized for brute force attacks.
SKILL.md:169-174SKILL.md:259-261SKILL.md:353-356SKILL.md:295SKILL.md:477
Credential Access Techniques
Skill demonstrates techniques for accessing credentials from cloud services including Key Vault secrets, Lambda environment variables, and user data. This is standard cloud security assessment.
Problèmes à risque moyen (2)
SKILL.md:44-74SKILL.md:100-143SKILL.md:215-247SKILL.md:427
Network Reconnaissance
Skill includes network enumeration commands for cloud resources. This is standard reconnaissance for security assessments.
SKILL.md:353-356SKILL.md:67SKILL.md:464
Filesystem Access
Skill contains filesystem access commands for credential discovery. This is standard post-exploitation technique in authorized assessments.
Problèmes à risque faible (1)
SKILL.md:176-197SKILL.md:271-286
Persistence Techniques
Skill documents persistence techniques like creating service principals and backdoor accounts. These are standard post-exploitation techniques documented for authorized assessments.

Facteurs de risque

⚙️ Commandes externes (114)
references/advanced-cloud-scripts.md:9-24 references/advanced-cloud-scripts.md:24-28 references/advanced-cloud-scripts.md:28-44 references/advanced-cloud-scripts.md:44-50 references/advanced-cloud-scripts.md:50-55 references/advanced-cloud-scripts.md:55-59 references/advanced-cloud-scripts.md:59-74 references/advanced-cloud-scripts.md:74-80 references/advanced-cloud-scripts.md:80-88 references/advanced-cloud-scripts.md:89-90 references/advanced-cloud-scripts.md:91-92 references/advanced-cloud-scripts.md:95-101 references/advanced-cloud-scripts.md:101-107 references/advanced-cloud-scripts.md:108-109 references/advanced-cloud-scripts.md:110-111 references/advanced-cloud-scripts.md:114-118 references/advanced-cloud-scripts.md:118-125 references/advanced-cloud-scripts.md:125-129 references/advanced-cloud-scripts.md:129-130 references/advanced-cloud-scripts.md:130-148 references/advanced-cloud-scripts.md:148-152 references/advanced-cloud-scripts.md:152-157 references/advanced-cloud-scripts.md:157-161 references/advanced-cloud-scripts.md:161-167 references/advanced-cloud-scripts.md:167-171 references/advanced-cloud-scripts.md:171-176 references/advanced-cloud-scripts.md:176-180 references/advanced-cloud-scripts.md:180-184 references/advanced-cloud-scripts.md:184-190 references/advanced-cloud-scripts.md:190-221 references/advanced-cloud-scripts.md:221-225 references/advanced-cloud-scripts.md:225-240 references/advanced-cloud-scripts.md:240-244 references/advanced-cloud-scripts.md:244-253 references/advanced-cloud-scripts.md:259-265 references/advanced-cloud-scripts.md:272-276 references/advanced-cloud-scripts.md:276-290 references/advanced-cloud-scripts.md:9 references/advanced-cloud-scripts.md:28 references/advanced-cloud-scripts.md:50 references/advanced-cloud-scripts.md:59 references/advanced-cloud-scripts.md:80 references/advanced-cloud-scripts.md:101 references/advanced-cloud-scripts.md:118 references/advanced-cloud-scripts.md:242 references/advanced-cloud-scripts.md:244 SKILL.md:20-36 SKILL.md:36-62 SKILL.md:62-74 SKILL.md:74-80 SKILL.md:80-98 SKILL.md:98-104 SKILL.md:104-143 SKILL.md:143-149 SKILL.md:149-174 SKILL.md:174-180 SKILL.md:180-197 SKILL.md:197-203 SKILL.md:203-213 SKILL.md:213-219 SKILL.md:219-247 SKILL.md:247-253 SKILL.md:253-269 SKILL.md:269-275 SKILL.md:275-286 SKILL.md:286-292 SKILL.md:292-331 SKILL.md:331-337 SKILL.md:337-356 SKILL.md:356-364 SKILL.md:364-365 SKILL.md:365-366 SKILL.md:366-367 SKILL.md:367-368 SKILL.md:368-369 SKILL.md:369-370 SKILL.md:370-371 SKILL.md:371-377 SKILL.md:377-378 SKILL.md:378-379 SKILL.md:379-380 SKILL.md:380-381 SKILL.md:381-382 SKILL.md:382-383 SKILL.md:383-389 SKILL.md:389-390 SKILL.md:390-391 SKILL.md:391-392 SKILL.md:392-393 SKILL.md:393-394 SKILL.md:394-395 SKILL.md:395-401 SKILL.md:401-402 SKILL.md:402-403 SKILL.md:403-443 SKILL.md:443-451 SKILL.md:451-457 SKILL.md:457-469 SKILL.md:469-475 SKILL.md:475-490 SKILL.md:267 SKILL.md:283 SKILL.md:253-269 SKILL.md:275-286 SKILL.md:80 SKILL.md:81 SKILL.md:104 SKILL.md:149 SKILL.md:163 SKILL.md:180 SKILL.md:443 SKILL.md:28 SKILL.md:353 SKILL.md:354
🌐 Accès réseau (50)
references/advanced-cloud-scripts.md:120 references/advanced-cloud-scripts.md:123 references/advanced-cloud-scripts.md:3 references/advanced-cloud-scripts.md:83 references/advanced-cloud-scripts.md:91 references/advanced-cloud-scripts.md:97 references/advanced-cloud-scripts.md:110 references/advanced-cloud-scripts.md:120 references/advanced-cloud-scripts.md:123 references/advanced-cloud-scripts.md:289 references/advanced-cloud-scripts.md:85 references/advanced-cloud-scripts.md:120 references/advanced-cloud-scripts.md:123 SKILL.md:263 SKILL.md:264 SKILL.md:267 SKILL.md:268 SKILL.md:383 SKILL.md:401 SKILL.md:402 SKILL.md:498 SKILL.md:339 SKILL.md:342 SKILL.md:395 SKILL.md:403 SKILL.md:27 SKILL.md:31 SKILL.md:64 SKILL.md:67 SKILL.md:263 SKILL.md:264 SKILL.md:267 SKILL.md:268 SKILL.md:339 SKILL.md:342 SKILL.md:383 SKILL.md:395 SKILL.md:401 SKILL.md:402 SKILL.md:403 SKILL.md:446 SKILL.md:450 SKILL.md:263 SKILL.md:264 SKILL.md:267 SKILL.md:268 SKILL.md:383 SKILL.md:401 SKILL.md:402 SKILL.md:498
📁 Accès au système de fichiers (5)
SKILL.md:354 SKILL.md:67 SKILL.md:354 SKILL.md:354 SKILL.md:464

Motifs détectés

Code Execution + Network + Credentials
Audité par: claude

Score de qualité

41
Architecture
100
Maintenabilité
87
Contenu
50
Communauté
40
Sécurité
96
Conformité aux spécifications

Ce que vous pouvez construire

AWS評価を実施するセキュリティコンサルタント

S3バケット列挙、IAMロール分析、EC2インスタンステストを含む包括的なAWSセキュリティ評価を実施

防御チームメンバーが防御をテスト

攻撃者の技術をシミュレートして組織のクラウドセキュリティコントロールを検証

DevSecOpsエンジニアがクラウドインフラストラクチャを強化

攻撃者が悪用する前にクラウド設定ミスを特定し修正

Essayez ces prompts

基本的なAWS列挙 
Use the cloud-penetration-testing skill to enumerate AWS resources. List all S3 buckets, EC2 instances, and IAM users accessible with current credentials. Run: aws sts get-caller-identity first to check authentication.
Azure ADユーザー発見 
Use the cloud-penetration-testing skill to enumerate Azure AD users and groups. List all users, groups, and role assignments. Check for users with password in attributes.
GCPプロジェクト評価 
Use the cloud-penetration-testing skill to assess GCP security. List enabled services, compute instances, storage buckets, and IAM policies. Check for overly permissive service accounts.
包括的なクラウド監査 
Use the cloud-penetration-testing skill to perform a comprehensive multi-cloud security assessment covering AWS, Azure, and GCP. Document all findings with remediation recommendations.

Bonnes pratiques

  • テスト対象のクラウド環境から常に書面による認可を取得
  • コンプライアンスのためにすべてのテスト活動と発見を記録
  • 悪用を試みる前に最初に読み取り専用の列挙技術を使用
  • 認可の範囲境界を尊重し、認可外のシステムにアクセスしない

Éviter

  • Running penetration tests without proper authorization
  • Testing production systems without notification to operations team
  • Attempting to access customer data in multi-tenant environments
  • Ignoring detection and alerting mechanisms during testing

Foire aux questions

Does this skill work with multi-factor authentication?
MFA can limit some attack techniques. The skill documents alternative authentication methods but these require specific conditions to succeed.
Can this skill bypass cloud security controls?
No. This skill provides testing techniques that work within the capabilities of the provided credentials. Properly secured environments will block unauthorized access.
Is password spraying included?
The skill references password spraying tools for credential validation testing. This requires explicit authorization and should only be used in authorized assessments.
Does this skill work offline?
No. Cloud penetration testing requires network access to cloud provider APIs and metadata endpoints.
Can I use this for internal security testing?
Yes, with proper written authorization from the environment owner. Always document the scope and rules of engagement.
What cloud providers are supported?
Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP) are all covered with specific techniques for each.

Détails du développeur

Auteur

sickn33

Licence

MIT

Dépôt

https://github.com/sickn33/antigravity-awesome-skills/tree/main/skills/cloud-penetration-testing

Réf

main

Structure de fichiers

📁 references/

📄 advanced-cloud-scripts.md

📄 SKILL.md