cloud-penetration-testing

Conducts comprehensive security assessments of cloud infrastructures across Azure, AWS, and GCP, identifying vulnerabilities and misconfigurations.

Install this skill

0/100

Security score

The cloud-penetration-testing skill was audited on Mar 9, 2026 and we found 33 security issues across 5 threat categories, including 3 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

high line 30

Piping content to bash shell

SourceSKILL.md

30	curl https://sdk.cloud.google.com \| bash

medium line 26

Curl to non-GitHub URL

SourceSKILL.md

26	curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"

medium line 30

Curl to non-GitHub URL

SourceSKILL.md

30	curl https://sdk.cloud.google.com \| bash

medium line 63

Curl to non-GitHub URL

SourceSKILL.md

63	curl "https://login.microsoftonline.com/[email protected]&xml=1"

medium line 66

Curl to non-GitHub URL

SourceSKILL.md

66	curl "https://login.microsoftonline.com/target.com/v2.0/.well-known/openid-configuration"

medium line 262

Curl to non-GitHub URL

SourceSKILL.md

262	curl http://169.254.169.254/latest/meta-data/

medium line 263

Curl to non-GitHub URL

SourceSKILL.md

263	curl http://169.254.169.254/latest/meta-data/iam/security-credentials/

medium line 266

Curl to non-GitHub URL

SourceSKILL.md

266	TOKEN=$(curl -X PUT "http://169.254.169.254/latest/api/token" -H "X-aws-ec2-metadata-token-ttl-seconds: 21600")

medium line 267

Curl to non-GitHub URL

SourceSKILL.md

267	curl http://169.254.169.254/latest/meta-data/profile -H "X-aws-ec2-metadata-token: $TOKEN"

medium line 338

Curl to non-GitHub URL

SourceSKILL.md

338	curl "http://metadata.google.internal/computeMetadata/v1/?recursive=true&alt=text" -H "Metadata-Flavor: Google"

medium line 341

Curl to non-GitHub URL

SourceSKILL.md

341	curl http://metadata.google.internal/computeMetadata/v1/instance/service-accounts/default/scopes -H 'Metadata-Flavor:Google'

high line 382

Curl to non-GitHub URL

SourceSKILL.md

382	\| Metadata \| `curl http://169.254.169.254/latest/meta-data/` \|

high line 394

Curl to non-GitHub URL

SourceSKILL.md

394	\| Metadata \| `curl -H "Metadata-Flavor: Google" http://metadata.google.internal/...` \|

low line 353

Access to hidden dotfiles in home directory

SourceSKILL.md

353	sudo cp -r /home/user/.config/gcloud ~/.config

medium line 343

Access to system keychain/keyring

SourceSKILL.md

343	# Decrypt data with keyring

medium line 344

Access to system keychain/keyring

SourceSKILL.md

344	gcloud kms decrypt --ciphertext-file=encrypted.enc --plaintext-file=out.txt --key <key> --keyring <keyring> --location global

low line 26

External URL reference

SourceSKILL.md

26	curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"

low line 30

External URL reference

SourceSKILL.md

30	curl https://sdk.cloud.google.com \| bash

low line 63

External URL reference

SourceSKILL.md

63	curl "https://login.microsoftonline.com/[email protected]&xml=1"

low line 66

External URL reference

SourceSKILL.md

66	curl "https://login.microsoftonline.com/target.com/v2.0/.well-known/openid-configuration"

low line 262

External URL reference

SourceSKILL.md

262	curl http://169.254.169.254/latest/meta-data/

low line 263

External URL reference

SourceSKILL.md

263	curl http://169.254.169.254/latest/meta-data/iam/security-credentials/

low line 266

External URL reference

SourceSKILL.md

266	TOKEN=$(curl -X PUT "http://169.254.169.254/latest/api/token" -H "X-aws-ec2-metadata-token-ttl-seconds: 21600")

low line 267

External URL reference

SourceSKILL.md

267	curl http://169.254.169.254/latest/meta-data/profile -H "X-aws-ec2-metadata-token: $TOKEN"

low line 338

External URL reference

SourceSKILL.md

338	curl "http://metadata.google.internal/computeMetadata/v1/?recursive=true&alt=text" -H "Metadata-Flavor: Google"

low line 341

External URL reference

SourceSKILL.md

341	curl http://metadata.google.internal/computeMetadata/v1/instance/service-accounts/default/scopes -H 'Metadata-Flavor:Google'

low line 382

External URL reference

SourceSKILL.md

382	\| Metadata \| `curl http://169.254.169.254/latest/meta-data/` \|

low line 394

External URL reference

SourceSKILL.md

394	\| Metadata \| `curl -H "Metadata-Flavor: Google" http://metadata.google.internal/...` \|

low line 400

External URL reference

SourceSKILL.md

400	\| AWS \| `http://169.254.169.254/latest/meta-data/` \|

low line 401

External URL reference

SourceSKILL.md

401	\| Azure \| `http://169.254.169.254/metadata/instance?api-version=2018-02-01` \|

low line 402

External URL reference

SourceSKILL.md

402	\| GCP \| `http://metadata.google.internal/computeMetadata/v1/` \|

low line 445

External URL reference

SourceSKILL.md

445	python fire.py --access_key <key> --secret_access_key <secret> --region us-east-1 --url https://login.microsoft.com --command create

low line 449

External URL reference

SourceSKILL.md

449	Invoke-MSOLSpray -UserList .\users.txt -Password "Spring2024!" -URL https://<api-gateway>.execute-api.us-east-1.amazonaws.com/fireprox

Scanned on Mar 9, 2026

View Security Dashboard

Installation guide →

GitHub Stars 21.5K

Rate this skill

Categorydevelopment

UpdatedApril 4, 2026

openclaw api devops security-engineer devops-sre ml-ai-engineer aws azure gcp development

sickn33/antigravity-awesome-skills