Stats
Actions
Tags
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
From communitytools
Tests cloud infrastructure and container environments for security misconfigurations and exploitation paths.
How this skill is triggered — by the user, by Claude, or both
Slash command
/communitytools:cloud-containersThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Test cloud infrastructure and container environments for security misconfigurations and exploitation paths.
reference/INDEX.mdreference/cloud-containers-principles.mdreference/scenarios/aws/minio-self-hosted-s3.mdreference/scenarios/aws/moto-mock-aws-quirks.mdreference/scenarios/aws/recon-and-iam-privesc.mdreference/scenarios/aws/serverless-and-saas.mdreference/scenarios/azure/recon-and-storage.mdreference/scenarios/docker/container-recon-and-escape.mdreference/scenarios/gcp/recon-and-iam.mdreference/scenarios/kubernetes/recon-and-rbac.mdTest cloud infrastructure and container environments for security misconfigurations and exploitation paths.
| Platform | Key Vectors |
|---|---|
| AWS | S3 bucket exposure, IAM misconfig, metadata service, Lambda abuse |
| Azure | Blob storage, RBAC flaws, managed identity, App Service misconfig |
| GCP | Cloud Storage, service account keys, metadata server, IAM |
| Docker | Container escape, privileged mode, socket exposure, image vulnerabilities |
| Kubernetes | RBAC bypass, secret exposure, pod escape, API server access |
reference/INDEX.md - Router for platform-specific attack scenarios (AWS, Azure, GCP, Docker, K8s)npx claudepluginhub transilienceai/communitytoolsAudits cloud infrastructure for misconfigurations in AWS IAM privilege escalation, exposed S3 buckets, GCP service accounts, Azure RBAC, Kubernetes API servers, and metadata credential leaks.
Audits AWS/Azure/GCP cloud security, hardens containers and Kubernetes, and scans Infrastructure as Code (Terraform, CloudFormation). Reports against CIS Benchmarks, SOC2, PCI-DSS, and HIPAA.
Identifies cloud-native security vulnerabilities including IMDS/SSRF exploitation, IAM misconfigurations, Kubernetes issues, serverless attack vectors, and cloud provider risks during code reviews, IaC audits, and pentesting.