aws-penetration-testing

Name: aws-penetration-testing
Author: davila7

by davila7

This skill should be used when the user asks to \

Installation

Pick a client and clone the repository into its skills directory.

Installation

Quick info

Author: davila7
Category: Testing
Views: 37

GitHub repo

About this skill

This skill should be used when the user asks to \

How to use

Zainstaluj wymagane narzędzia: Pacu (git clone https://github.com/RhinoSecurityLabs/pacu), Prowler (pip install prowler), ScoutSuite (pip install scoutsuite), Principal Mapper (pip install principalmapper) oraz enumerate-iam (git clone https://github.com/andresriancho/enumerate-iam). 2. Skonfiguruj AWS CLI z poświadczeniami testowymi: uruchom aws configure --profile compromised i podaj dostęp do konta AWS, które chcesz testować. 3. Sprawdź bieżącą tożsamość i uprawnienia za pomocą aws sts get-caller-identity, a następnie wylistuj klucze dostępu komendą aws iam list-access-keys. 4. Uruchom enumerację uprawnień skryptem ./enumerate-iam.py --access-key AKIA... --secret-key StF0q..., aby zidentyfikować dostępne akcje IAM dla danego użytkownika. 5. Użyj Pacu lub Principal Mapper do mapowania ścieżek eskalacji uprawnień i odkrycia potencjalnych wektorów ataku w konfiguracji IAM. 6. Przeanalizuj wyniki za pomocą Prowler lub ScoutSuite w celu wygenerowania raportu z luk bezpieczeństwa i rekomendacji naprawczych.

Related skills

testing-workflow

by amo-tech-ai

Comprehensive testing workflow for E2E, integration, and unit tests. Use when testing applications layer-by-layer, validating user journeys, or running test suites.

Testing

1076

textual

by KyleKing

Expert guidance for building TUI (Text User Interface) applications with the Textual framework. Invoke when user asks about Textual development, TUI apps, widgets, screens, CSS styling, reactive programming, or testing Textual applications.

Testing

69192

hono

by openstatusHQ

Efficiently develop Hono applications using Hono CLI. Supports documentation search, API reference lookup, request testing, and bundle optimization.

Testing

1257

playwright-cli

by microsoft

Automates browser interactions for web testing, form filling, screenshots, and data extraction. Use when the user needs to navigate websites, interact with web pages, fill forms, take screenshots, test web applications, or extract information from web pages.

Testing

45103

python-testing-patterns

by wshobson

Implement comprehensive testing strategies with pytest, fixtures, mocking, and test-driven development. Use when writing Python tests, setting up test suites, or implementing testing best practices.

Testing

46146

vitest

by antfu

Vitest fast unit testing framework powered by Vite with Jest-compatible API. Use when writing tests, mocking, configuring coverage, or working with test filtering and fixtures.

Testing

1236