jd-opensource/pentest-cloud-infrastructure
skills/pentest-cloud-infrastructure/SKILL.md
Cloud security posture management and container security assessment for AWS, Azure, GCP, and Kubernetes.
$ install --global
skillsauthnpx skillsauth add jd-opensource/joysafeter pentest-cloud-infrastructureInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 24, 2026, 8:38 PM1.8s1 file scanned
SKILL.md
- name:
- pentest-cloud-infrastructure
- description:
- Cloud security posture management and container security assessment for AWS, Azure, GCP, and Kubernetes.
Pentest Cloud Infrastructure
Purpose
Assess the security configuration of cloud environments and containerized infrastructure to detect misconfigurations, excessive permissions, and vulnerabilities.
Core Workflow
- Cloud Config Audit: Assess cloud provider configuration (AWS/Azure/GCP) using
prowlerandscoutsuite. - IaC Scanning: Analyze Infrastructure-as-Code (Terraform, CloudFormation) for security flaws using
checkovandterrascan. - Container Security: Scan container images and runtime environments using
trivy,clair, anddockle. - Kubernetes Assessment: Audit K8s clusters for CIS compliance and vulnerabilities using
kube-benchandkube-hunter. - Runtime Monitoring: Analyze runtime behavior and rule violations using
falco.
References
references/tools.mdreferences/workflows.md
Related Skills
jd-opensource/xlsx
development
VerifiedTrustedCommunity
Comprehensive spreadsheet creation, editing, and analysis with support for formulas, formatting, data analysis, and visualization. When Claude needs to work with spreadsheets (.xlsx, .xlsm, .csv, .tsv, etc) for: (1) Creating new spreadsheets with formulas and formatting, (2) Reading or analyzing data, (3) Modify existing spreadsheets while preserving formulas, (4) Data analysis and visualization in spreadsheets, or (5) Recalculating formulas
238SKILL.mdUpdated Apr 6, 2026
jd-opensource/writing-plans
development
VerifiedTrustedCommunity
Use when you have a spec or requirements for a multi-step task, before touching code
238SKILL.mdUpdated Apr 6, 2026
jd-opensource/skill-security-auditor
testing
VerifiedTrustedCommunity
OpenClaw Skills 全方位安全审计工具,检测供应链投毒、Prompt注入、恶意代码模式、权限越权和依赖风险
238SKILL.mdUpdated Apr 6, 2026
jd-opensource/skill-creator
tools
VerifiedTrustedCommunity
Guide for creating effective skills. This skill should be used when users want to create a new skill (or update an existing skill) that extends an agent's capabilities with specialized knowledge, workflows, or tool integrations.
238SKILL.mdUpdated Apr 6, 2026