Does this skill help with the Principle of Least Privilege?

Absolutely. It provides guidance on replacing broad CIDR blocks with specific security group references to ensure only authorized services can communicate.

Does it automatically modify my AWS environment?

No, it generates the specific AWS CLI commands required for remediation, allowing you to review and execute them safely.

How does the analyzer find unused security groups?

The skill compares the list of all security groups in your account against those currently associated with active resources like EC2 instances and RDS databases to find orphans.

Can it detect open database ports?

Yes, it specifically scans for common high-risk ports including 3306 (MySQL), 5432 (PostgreSQL), 27017 (MongoDB), and 6379 (Redis).

AWS Security Group Analyzer

Name: AWS Security Group Analyzer
Author: armanzeroeight

byarmanzeroeight

•

安全与测试

Audits AWS security groups to identify overly permissive rules and improve network security posture.

The AWS Security Group Analyzer is a specialized tool designed to evaluate and harden your AWS network security by scanning for vulnerabilities in EC2 security groups. It helps engineers identify high-risk configurations—such as SSH, RDP, or database ports open to the public internet (0.0.0.0/0)—and provides actionable AWS CLI commands to restrict access based on the principle of least privilege. Whether you are performing a routine security audit, cleaning up unused resources, or implementing a multi-tier architecture, this skill streamlines the process of securing your cloud infrastructure through automated checks and guided remediation patterns.

主要功能

01Identifies unused security groups to reduce attack surface and clutter

0219 GitHub stars

03Generates remediation commands for revoking and authorizing rules

04Provides infrastructure patterns for secure Web, App, and DB tiers

05Detects high-risk ports open to the public internet (0.0.0.0/0)

06Evaluates egress rules to prevent unauthorized outbound traffic

使用场景

01Conducting automated security audits for AWS compliance and best practices

02Identifying and removing stale security groups after infrastructure migrations

03Restricting database access to specific application security groups instead of CIDR blocks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add armanzeroeight/fastagent-plugins security-group-analyzer

For use in Claude.ai and ChatGPT

Download Skill