aws-security-scanner

Solid

AWS security configuration scanning and hardening using Prowler, Security Hub, and AWS Config

AI & Automation 1,160 stars 71 forks Updated today MIT

Install

View on GitHub

Quality Score: 96/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# AWS Security Scanner Skill ## Purpose Automated AWS security configuration scanning and hardening to identify misconfigurations, compliance violations, and security risks across AWS accounts and organizations. ## Capabilities ### Prowler Security Assessments - Run comprehensive Prowler security scans - Execute CIS AWS Foundations Benchmark checks - Run AWS Well-Architected security pillar assessments - Check PCI DSS, HIPAA, GDPR compliance - Generate multi-format reports (HTML, CSV, JSON) ### IAM Security Analysis - Analyze IAM policies for over-permissive access - Check for unused credentials and access keys - Identify IAM users without MFA - Review cross-account access configurations - Detect privilege escalation paths - Analyze service control policies (SCPs) ### S3 Bucket Security - Identify publicly accessible buckets - Check bucket encryption configurations - Review bucket policies and ACLs - Verify access logging enabled - Check for sensitive data exposure - Validate versioning and replication ### Network Security Analysis - Review security group configurations - Analyze Network ACLs - Check VPC flow log enablement - Identify public-facing resources - Validate VPC endpoint configurations - Check for overly permissive rules ### Encryption Verification - Verify EBS volume encryption - Check RDS encryption settings - Validate S3 encryption configurations - Review KMS key policies - Check secrets manager configurations - Verify certificate validity ### Logging a...

Details

Author
a5c-ai
Repository
a5c-ai/babysitter
Created
4 months ago
Last Updated
today
Language
JavaScript
License
MIT

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

azure-security-scanner

Azure security configuration scanning and hardening using Azure Security Center, Azure Policy, and ScoutSuite

1,160 Updated today
a5c-ai
AI & Automation Solid

gcp-security-scanner

GCP security configuration scanning and hardening using Security Command Center, Forseti, and ScoutSuite

1,160 Updated today
a5c-ai
Testing & QA Solid

cloud-security-testing

Multi-cloud security assessment and penetration testing capabilities. Execute Prowler/ScoutSuite assessments, analyze IAM policies, identify cloud misconfigurations, test permissions, and enumerate cloud resources across AWS/GCP/Azure.

1,160 Updated today
a5c-ai
AI & Automation Featured

aws-security-audit

Comprehensive AWS security posture assessment using AWS CLI and security best practices

39,350 Updated today
sickn33
Testing & QA Featured

aws-penetration-testing

Provide comprehensive techniques for penetration testing AWS cloud environments. Covers IAM enumeration, privilege escalation, SSRF to metadata endpoint, S3 bucket exploitation, Lambda code extraction, and persistence techniques for red team operations.

39,350 Updated today
sickn33