pentest-cloud-infrastructure

Cloud security posture management and container security assessment for AWS, Azure, GCP, and Kubernetes.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "pentest-cloud-infrastructure" with this command: npx skills add jd-opensource/joysafeter/jd-opensource-joysafeter-pentest-cloud-infrastructure

Pentest Cloud Infrastructure

Purpose

Assess the security configuration of cloud environments and containerized infrastructure to detect misconfigurations, excessive permissions, and vulnerabilities.

Core Workflow

  1. Cloud Config Audit: Assess cloud provider configuration (AWS/Azure/GCP) using prowler and scoutsuite.
  2. IaC Scanning: Analyze Infrastructure-as-Code (Terraform, CloudFormation) for security flaws using checkov and terrascan.
  3. Container Security: Scan container images and runtime environments using trivy, clair, and dockle.
  4. Kubernetes Assessment: Audit K8s clusters for CIS compliance and vulnerabilities using kube-bench and kube-hunter.
  5. Runtime Monitoring: Analyze runtime behavior and rule violations using falco.

References

  • references/tools.md
  • references/workflows.md

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

pentest-ai-llm-security

No summary provided by upstream source.

Repository SourceNeeds Review
31-jd-opensource
General

pentest-osint-recon

No summary provided by upstream source.

Repository SourceNeeds Review
40-jd-opensource
General

pentest-mobile-app

No summary provided by upstream source.

Repository SourceNeeds Review
39-jd-opensource
General

pentest-exploit-validation

No summary provided by upstream source.

Repository SourceNeeds Review
35-jd-opensource