performing-cloud-asset-inventory-with-cartography

Featured

Perform comprehensive cloud asset inventory and relationship mapping using Cartography to build a Neo4j security graph of infrastructure assets, IAM permissions, and attack paths across AWS, GCP, and Azure.

DevOps & Infrastructure 13,115 stars 1533 forks Updated today Apache-2.0

Install

View on GitHub

Quality Score: 99/100

Stars 20%

100

Recency 20%

100

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

100

Description 5%

100

Skill Content

# Performing Cloud Asset Inventory with Cartography ## Overview Cartography is a CNCF sandbox project (originally created at Lyft) that consolidates infrastructure assets and their relationships into a Neo4j graph database. It queries cloud APIs to discover resources, maps relationships between them, and enables security teams to identify attack paths, generate asset reports, and find areas for security improvement. The graph model reveals hidden connections such as IAM permission chains, network paths, and cross-account trust relationships. ## When to Use - When conducting security assessments that involve performing cloud asset inventory with cartography - When following incident response procedures for related security events - When performing scheduled security testing or auditing activities - When validating security controls through hands-on testing ## Prerequisites - Python 3.8+ - Neo4j 4.x or 5.x database - Cloud provider credentials (AWS, GCP, Azure) - Docker (optional, for Neo4j deployment) - Minimum 4GB RAM for Neo4j, more for large environments ## Installation ```bash # Install Cartography pip install cartography # Verify installation cartography --help ``` ### Deploy Neo4j with Docker ```bash docker run -d \ --name neo4j \ -p 7474:7474 -p 7687:7687 \ -e NEO4J_AUTH=neo4j/changethispassword \ -e NEO4J_PLUGINS='["apoc"]' \ -v neo4j_data:/data \ neo4j:5-community ``` ## Running Cartography ### Basic AWS Sync ```bash # Sync AWS account data ...

Details

Author: mukul975
Repository: mukul975/Anthropic-Cybersecurity-Skills
Created: 3 months ago
Last Updated: today
Language: Python
License: Apache-2.0

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Listed

cartographer-mcp-tools

Cartographer MCP tools reference (query, cypher, context, impact, detect_changes, rename, route_map, api_impact, shape_check, group_*). Use when invoking cartographer MCP tools.

4 Updated today

skylence-be

DevOps & Infrastructure Solid

cloud-penetration-testing

This skill should be used when the user asks to "perform cloud penetration testing", "assess Azure or AWS or GCP security", "enumerate cloud resources", "exploit cloud misconfigurations", "test O365 security", "extract secrets from cloud environments", or "audit cloud infrastructure". It provides comprehensive techniques for security assessment across major cloud platforms.

27,705 Updated today

davila7

DevOps & Infrastructure Solid

cloud-penetration-testing

4,222 Updated today

zebbern

DevOps & Infrastructure Listed

cloud-penetration-testing

335 Updated today

aiskillstore

AI & Automation Featured

conducting-cloud-penetration-testing

This skill outlines methodologies for performing authorized penetration testing against AWS, Azure, and GCP cloud environments. It covers understanding the shared responsibility model for testing scope, leveraging cloud-specific attack tools like Pacu and ScoutSuite, exploiting IAM misconfigurations, testing for SSRF to cloud metadata services, and reporting findings aligned to MITRE ATT&CK Cloud matrix.

13,115 Updated today

mukul975