技能 cloud-penetration-testing
☁️
cloud-penetration-testing
低风险 ⚙️
外部命令🌐
网络访问📁
文件系统访问
执行云安全评估
安全专业人员需要跨 Azure、AWS 和 GCP 环境的全面云渗透测试能力。此技能提供用于侦察、枚举、利用和持久性测试的结构化工作流程,并带有明确的授权要求。
支持: Claude Codex Code(CC)
1
下载技能 ZIP
2
在 Claude 中上传
前往 设置 → 功能 → 技能 → 上传技能
3
开启并开始使用
测试它
正在使用“cloud-penetration-testing”。 枚举 AWS S3 存储桶并检查公共访问
预期结果:
返回带有访问控制的 S3 存储桶列表,识别公开可访问的存储桶,为错误配置提供修复建议
正在使用“cloud-penetration-testing”。 检查 Azure AD 中属性包含密码的用户
预期结果:
返回属性中包含敏感数据的 Azure AD 用户,显示哪些属性包含潜在机密信息
正在使用“cloud-penetration-testing”。 访问 GCP 元数据服务进行凭证发现
预期结果:
从被攻陷的计算实例返回 GCP 服务账户令牌和元数据
安全审计
低风险v1 • 2/25/2026
This skill contains cloud penetration testing commands and scripts commonly used in authorized security assessments. Static analysis flagged external command execution, network access, and metadata endpoint patterns - all standard elements of legitimate cloud security testing. The skill includes clear authorization requirements and is designed for security professionals. Findings are false positives in this context as they represent standard pen testing techniques for Azure, AWS, and GCP.
2
已扫描文件
826
分析行数
10
发现项
1
审计总数
高风险问题 (4)
SKILL.md:20-36SKILL.md:80-98SKILL.md:143-174SKILL.md:253-269SKILL.md:275-286SKILL.md:337-395SKILL.md:443-475references/advanced-cloud-scripts.md:9-130references/advanced-cloud-scripts.md:148-190
External Command Execution
Skill contains numerous external command invocations using shell backticks and system() calls. These execute AWS CLI, Azure CLI, and GCP commands for security testing purposes. This is standard penetration testing practice but could be misused.
SKILL.md:263-268SKILL.md:339-342SKILL.md:383SKILL.md:401-402references/advanced-cloud-scripts.md:120-124
Cloud Metadata Service Access
Skill contains commands to access AWS, Azure, and GCP metadata endpoints (169.254.169.254). This is standard cloud security assessment technique for checking instance credentials and configuration.
Password Spraying Scripts
Skill contains password spraying tools and scripts for testing credential strength. This is a legitimate security testing technique but could be weaponized for brute force attacks.
Credential Access Techniques
Skill demonstrates techniques for accessing credentials from cloud services including Key Vault secrets, Lambda environment variables, and user data. This is standard cloud security assessment.
中风险问题 (2)
Network Reconnaissance
Skill includes network enumeration commands for cloud resources. This is standard reconnaissance for security assessments.
Filesystem Access
Skill contains filesystem access commands for credential discovery. This is standard post-exploitation technique in authorized assessments.
低风险问题 (1)
Persistence Techniques
Skill documents persistence techniques like creating service principals and backdoor accounts. These are standard post-exploitation techniques documented for authorized assessments.
风险因素
⚙️ 外部命令 (114)
references/advanced-cloud-scripts.md:9-24 references/advanced-cloud-scripts.md:24-28 references/advanced-cloud-scripts.md:28-44 references/advanced-cloud-scripts.md:44-50 references/advanced-cloud-scripts.md:50-55 references/advanced-cloud-scripts.md:55-59 references/advanced-cloud-scripts.md:59-74 references/advanced-cloud-scripts.md:74-80 references/advanced-cloud-scripts.md:80-88 references/advanced-cloud-scripts.md:89-90 references/advanced-cloud-scripts.md:91-92 references/advanced-cloud-scripts.md:95-101 references/advanced-cloud-scripts.md:101-107 references/advanced-cloud-scripts.md:108-109 references/advanced-cloud-scripts.md:110-111 references/advanced-cloud-scripts.md:114-118 references/advanced-cloud-scripts.md:118-125 references/advanced-cloud-scripts.md:125-129 references/advanced-cloud-scripts.md:129-130 references/advanced-cloud-scripts.md:130-148 references/advanced-cloud-scripts.md:148-152 references/advanced-cloud-scripts.md:152-157 references/advanced-cloud-scripts.md:157-161 references/advanced-cloud-scripts.md:161-167 references/advanced-cloud-scripts.md:167-171 references/advanced-cloud-scripts.md:171-176 references/advanced-cloud-scripts.md:176-180 references/advanced-cloud-scripts.md:180-184 references/advanced-cloud-scripts.md:184-190 references/advanced-cloud-scripts.md:190-221 references/advanced-cloud-scripts.md:221-225 references/advanced-cloud-scripts.md:225-240 references/advanced-cloud-scripts.md:240-244 references/advanced-cloud-scripts.md:244-253 references/advanced-cloud-scripts.md:259-265 references/advanced-cloud-scripts.md:272-276 references/advanced-cloud-scripts.md:276-290 references/advanced-cloud-scripts.md:9 references/advanced-cloud-scripts.md:28 references/advanced-cloud-scripts.md:50 references/advanced-cloud-scripts.md:59 references/advanced-cloud-scripts.md:80 references/advanced-cloud-scripts.md:101 references/advanced-cloud-scripts.md:118 references/advanced-cloud-scripts.md:242 references/advanced-cloud-scripts.md:244 SKILL.md:20-36 SKILL.md:36-62 SKILL.md:62-74 SKILL.md:74-80 SKILL.md:80-98 SKILL.md:98-104 SKILL.md:104-143 SKILL.md:143-149 SKILL.md:149-174 SKILL.md:174-180 SKILL.md:180-197 SKILL.md:197-203 SKILL.md:203-213 SKILL.md:213-219 SKILL.md:219-247 SKILL.md:247-253 SKILL.md:253-269 SKILL.md:269-275 SKILL.md:275-286 SKILL.md:286-292 SKILL.md:292-331 SKILL.md:331-337 SKILL.md:337-356 SKILL.md:356-364 SKILL.md:364-365 SKILL.md:365-366 SKILL.md:366-367 SKILL.md:367-368 SKILL.md:368-369 SKILL.md:369-370 SKILL.md:370-371 SKILL.md:371-377 SKILL.md:377-378 SKILL.md:378-379 SKILL.md:379-380 SKILL.md:380-381 SKILL.md:381-382 SKILL.md:382-383 SKILL.md:383-389 SKILL.md:389-390 SKILL.md:390-391 SKILL.md:391-392 SKILL.md:392-393 SKILL.md:393-394 SKILL.md:394-395 SKILL.md:395-401 SKILL.md:401-402 SKILL.md:402-403 SKILL.md:403-443 SKILL.md:443-451 SKILL.md:451-457 SKILL.md:457-469 SKILL.md:469-475 SKILL.md:475-490 SKILL.md:267 SKILL.md:283 SKILL.md:253-269 SKILL.md:275-286 SKILL.md:80 SKILL.md:81 SKILL.md:104 SKILL.md:149 SKILL.md:163 SKILL.md:180 SKILL.md:443 SKILL.md:28 SKILL.md:353 SKILL.md:354
🌐 网络访问 (50)
references/advanced-cloud-scripts.md:120 references/advanced-cloud-scripts.md:123 references/advanced-cloud-scripts.md:3 references/advanced-cloud-scripts.md:83 references/advanced-cloud-scripts.md:91 references/advanced-cloud-scripts.md:97 references/advanced-cloud-scripts.md:110 references/advanced-cloud-scripts.md:120 references/advanced-cloud-scripts.md:123 references/advanced-cloud-scripts.md:289 references/advanced-cloud-scripts.md:85 references/advanced-cloud-scripts.md:120 references/advanced-cloud-scripts.md:123 SKILL.md:263 SKILL.md:264 SKILL.md:267 SKILL.md:268 SKILL.md:383 SKILL.md:401 SKILL.md:402 SKILL.md:498 SKILL.md:339 SKILL.md:342 SKILL.md:395 SKILL.md:403 SKILL.md:27 SKILL.md:31 SKILL.md:64 SKILL.md:67 SKILL.md:263 SKILL.md:264 SKILL.md:267 SKILL.md:268 SKILL.md:339 SKILL.md:342 SKILL.md:383 SKILL.md:395 SKILL.md:401 SKILL.md:402 SKILL.md:403 SKILL.md:446 SKILL.md:450 SKILL.md:263 SKILL.md:264 SKILL.md:267 SKILL.md:268 SKILL.md:383 SKILL.md:401 SKILL.md:402 SKILL.md:498
📁 文件系统访问 (5)
检测到的模式
Code Execution + Network + Credentials
审计者: claude
质量评分
41
架构
100
可维护性
87
内容
50
社区
40
安全
96
规范符合性
你能构建什么
安全顾问执行 AWS 评估
执行全面的 AWS 安全评估,包括 S3 存储桶枚举、IAM 角色分析和 EC2 实例测试
蓝队成员测试防御
通过模拟攻击者技术验证组织的云安全控制措施
DevSecOps 工程师加固云基础设施
在攻击者利用之前识别和修复云错误配置
试试这些提示
基础 AWS 枚举
Use the cloud-penetration-testing skill to enumerate AWS resources. List all S3 buckets, EC2 instances, and IAM users accessible with current credentials. Run: aws sts get-caller-identity first to check authentication.
Azure AD 用户发现
Use the cloud-penetration-testing skill to enumerate Azure AD users and groups. List all users, groups, and role assignments. Check for users with password in attributes.
GCP 项目评估
Use the cloud-penetration-testing skill to assess GCP security. List enabled services, compute instances, storage buckets, and IAM policies. Check for overly permissive service accounts.
全面云审计
Use the cloud-penetration-testing skill to perform a comprehensive multi-cloud security assessment covering AWS, Azure, and GCP. Document all findings with remediation recommendations.
最佳实践
- 在测试任何云环境之前始终获取书面授权
- 记录所有测试活动和发现以符合合规要求
- 在尝试利用之前先使用只读枚举技术
- 遵守范围边界,不要访问授权范围之外的系统
避免
- 在没有适当授权的情况下运行渗透测试
- 在未通知运营团队的情况下测试生产系统
- 在多租户环境中尝试访问客户数据
- 在测试期间忽略检测和告警机制
常见问题
此技能是否适用于多因素认证?
MFA 可能会限制某些攻击技术。此技能记录了替代认证方法,但这些方法需要特定条件才能成功。
此技能能否绕过云安全控制?
不。此技能提供在所提供的凭证能力范围内工作的测试技术。适当保护的环境将阻止未经授权的访问。
是否包含密码喷洒?
此技能引用了用于凭证验证测试的密码喷洒工具。这需要明确授权,应仅在授权的评估中使用。
此技能是否支持离线工作?
不。云渗透测试需要网络访问云提供商 API 和元数据端点。
我可以将此用于内部安全测试吗?
可以,需获得环境所有者的适当书面授权。始终记录范围和参与规则。
支持哪些云提供商?
Amazon Web Services (AWS)、Microsoft Azure 和 Google Cloud Platform (GCP) 都有涵盖,每种都有特定技术。