Which cloud platforms does this skill support?

This skill provides specialized techniques and commands for Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP).

Are specific tools required for this skill to work?

Yes, you should have the respective cloud CLIs (AWS CLI, gcloud, Azure CLI/PowerShell) and optionally tools like ScoutSuite or Pacu installed.

Does this skill help with remediating security issues?

Yes, beyond identification, the skill provides specific hardening guidance and remediation steps to secure discovered vulnerabilities.

What kind of vulnerabilities can this skill identify?

It helps identify IAM misconfigurations, exposed credentials in metadata services, insecure storage permissions, and overly permissive networking rules.

Cloud Penetration Testing

Name: Cloud Penetration Testing
Author: zebbern

byzebbern

•

2,883

•

安全与测试

Conducts comprehensive security audits and penetration tests across major cloud providers including AWS, Azure, and GCP.

This skill equips Claude with specialized workflows for evaluating the security posture of cloud environments. It provides structured techniques for reconnaissance, resource enumeration, and identification of misconfigurations within Identity and Access Management (IAM), storage, and compute services. Ideal for security professionals and DevOps teams, it facilitates the detection of exposed secrets, privilege escalation paths, and persistence vulnerabilities while providing remediation guidance for multi-cloud environments.

主要功能

01Security assessment of cloud-native storage, compute instances, and serverless functions

022,883 GitHub stars

03IAM role and policy analysis to identify privilege escalation paths

04Standardized reporting workflows for cloud security findings and remediation

05Automated techniques for detecting and extracting exposed secrets and credentials

06Multi-cloud enumeration for AWS, Azure, and Google Cloud Platform (GCP)

使用场景

01Identifying and fixing misconfigured storage buckets or public-facing instances

02Validating Identity and Access Management (IAM) controls and least-privilege policies

03Performing a comprehensive security audit on a corporate cloud infrastructure

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add zebbern/claude-code-guide cloud-penetration-testing

For use in Claude.ai and ChatGPT

Download Skill