What cloud providers are supported?

The skill supports visibility into AWS, Azure, and GCP infrastructure, as well as Kubernetes clusters and identity providers like Active Directory and Microsoft Entra ID.

Can this skill fix security issues automatically?

No, this skill is read-only. It allows you to view, search, and report on misconfigurations and access remediation guidance, but actual changes must be performed within the SentinelOne console or via your infrastructure management tools.

Does it support Infrastructure-as-Code (IaC)?

Yes, it can detect and report on misconfigurations within IaC templates such as Terraform and CloudFormation, helping you identify risks before they reach production.

How does it help with threat modeling?

Every misconfiguration is mapped to specific MITRE ATT&CK techniques, helping security teams understand exactly how a configuration gap could be exploited by an adversary.

Can I use this for compliance reporting?

Yes, the skill retrieves misconfigurations mapped to major standards like CIS Benchmarks, SOC 2, HIPAA, and PCI DSS, making it a powerful tool for gathering evidence during audits.

SentinelOne XSPM Posture Management

Name: SentinelOne XSPM Posture Management
Author: wyre-technology

bywyre-technology

•

安全与测试

Monitor and audit security posture across multi-cloud, Kubernetes, and identity environments using SentinelOne XSPM data.

This skill empowers security analysts and Managed Service Providers (MSPs) to programmatically access SentinelOne’s Extended Security Posture Management (XSPM) module to identify configuration gaps across AWS, Azure, GCP, and Kubernetes. It provides deep visibility into compliance violations (CIS, SOC 2, HIPAA), MITRE ATT&CK technique mappings, and actionable remediation steps for critical risks like public storage buckets or overly permissive firewall rules. By automating the retrieval of evidence and history, users can streamline security audits and enhance client posture reviews directly within their Claude Code environment.

主要功能

01Multi-cloud security monitoring across AWS, Azure, and GCP infrastructure.

023 GitHub stars

03Advanced filtering by severity, status, and MITRE ATT&CK techniques.

04Deep visibility into Kubernetes clusters, identity providers, and IaC templates.

05Actionable remediation guidance and evidence collection for every detection.

06Automated mapping to compliance standards including CIS Benchmarks, SOC 2, and HIPAA.

使用场景

01Hardening Kubernetes environments by identifying root containers and exposed services.

02Conducting cloud security posture reviews for MSP clients to identify critical misconfigurations.

03Generating compliance audit reports by mapping configuration gaps to industry standards.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add wyre-technology/msp-claude-plugins misconfigurations

For use in Claude.ai and ChatGPT

Download Skill