Stats
Actions
Tags
From communitytools
Tests cloud infrastructure and container environments for security misconfigurations and exploitation paths.
How this skill is triggered — by the user, by Claude, or both
Slash command
/communitytools:cloud-containersThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Test cloud infrastructure and container environments for security misconfigurations and exploitation paths.
reference/INDEX.mdreference/cloud-containers-principles.mdreference/scenarios/aws/minio-self-hosted-s3.mdreference/scenarios/aws/moto-mock-aws-quirks.mdreference/scenarios/aws/recon-and-iam-privesc.mdreference/scenarios/aws/serverless-and-saas.mdreference/scenarios/azure/recon-and-storage.mdreference/scenarios/docker/container-recon-and-escape.mdreference/scenarios/gcp/recon-and-iam.mdreference/scenarios/kubernetes/recon-and-rbac.mdTest cloud infrastructure and container environments for security misconfigurations and exploitation paths.
| Platform | Key Vectors |
|---|---|
| AWS | S3 bucket exposure, IAM misconfig, metadata service, Lambda abuse |
| Azure | Blob storage, RBAC flaws, managed identity, App Service misconfig |
| GCP | Cloud Storage, service account keys, metadata server, IAM |
| Docker | Container escape, privileged mode, socket exposure, image vulnerabilities |
| Kubernetes | RBAC bypass, secret exposure, pod escape, API server access |
reference/INDEX.md - Router for platform-specific attack scenarios (AWS, Azure, GCP, Docker, K8s)npx claudepluginhub transilienceai/communitytoolsAudits cloud infrastructure for misconfigurations in AWS IAM privilege escalation, exposed S3 buckets, GCP service accounts, Azure RBAC, Kubernetes API servers, and metadata credential leaks.
Identifies cloud-native security vulnerabilities including IMDS/SSRF exploitation, IAM misconfigurations, Kubernetes issues, serverless attack vectors, and cloud provider risks during code reviews, IaC audits, and pentesting.
Conducts security assessments of cloud infrastructure on Azure, AWS, and GCP covering recon, authentication, privilege escalation, and data extraction.