Does it support specific compliance frameworks?

Yes, it provides analysis based on standard frameworks including OWASP, CWE, GDPR, HIPAA, and PCI-DSS.

Does it automatically fix the vulnerabilities it finds?

It provides detailed remediation recommendations and code examples which you can then review and apply through Claude's file editing tools.

What types of configurations can this skill audit?

This skill can audit cloud IAM policies, network Access Control Lists (ACLs), and application-level authorization logic within your codebase.

How do I start a security scan?

You can trigger the skill using natural language commands like 'audit access control', 'check permissions', or 'validate authorization'.

Access Control Auditor

Name: Access Control Auditor
Author: Brmbobo

byBrmbobo

セキュリティとテスト

Audits access control implementations to identify security vulnerabilities, overly permissive roles, and authorization misconfigurations.

概要

The Access Control Auditor skill provides automated security analysis for authentication and authorization frameworks across cloud environments, network resources, and application code. By systematically reviewing IAM policies, network ACLs, and user permission structures, the skill identifies potential privilege escalation paths and compliance gaps. It translates complex security configurations into actionable reports with prioritized remediation steps, helping developers maintain a least-privilege architecture and adhere to industry security standards.

主な機能

Detailed analysis of Network ACLs and VPC security configurations
Generation of prioritized remediation reports with specific code examples
Automated scanning of IAM policies and cloud environment permissions
Identification of privilege escalation risks and overly permissive access
0 GitHub stars
Compliance mapping against OWASP, GDPR, HIPAA, and PCI-DSS standards

ユースケース

Validating application-level authorization logic during security-focused code reviews
Reviewing VPC network ACLs to identify unauthorized access points or exposure risks
Auditing AWS IAM roles to ensure adherence to the principle of least privilege

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add brmbobo/web2podcast auditing-access-control

For use in Claude.ai and ChatGPT

Download Skill

GitHub

概要