cloud-security--container-hardening

Solid

AWS/Azure/GCP security auditing, container and Kubernetes hardening, Infrastructure as Code scanning, and cloud compliance assessment

DevOps & Infrastructure 47 stars 3 forks Updated today MIT

Install

View on GitHub

Quality Score: 89/100

Stars 20%
56
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
80
License 10%
100
Description 5%
100

Skill Content

# Cloud Security & Container Hardening ## Purpose Enable Claude to assist with cloud security assessments across AWS, Azure, and GCP, container and Kubernetes security hardening, Infrastructure as Code (Terraform, CloudFormation, Kubernetes manifests) scanning, and cloud compliance reporting against CIS Benchmarks and major frameworks. --- ## Activation Triggers This skill activates when the user asks about: - Auditing AWS IAM, S3, security groups, or cloud services - Reviewing Azure RBAC, storage, NSGs, or Key Vault configuration - Assessing GCP IAM, Cloud Storage, or GKE security - Scanning Terraform files, CloudFormation templates, or Kubernetes manifests - Hardening Docker containers or reviewing Dockerfiles - Kubernetes RBAC, pod security, or network policies - Cloud compliance (CIS, SOC2, PCI-DSS, HIPAA) - Container image vulnerability scanning - Cloud architecture security review - IaC security scanning (tfsec, Checkov, Terrascan) --- ## Prerequisites ```bash pip install pyyaml boto3 requests ``` **Recommended cloud security tools:** - `AWS CLI` — AWS auditing and management - `ScoutSuite` — Multi-cloud security audit - `Prowler` — AWS/Azure/GCP security assessment - `Checkov` — IaC static analysis - `tfsec` — Terraform security scanner - `Trivy` — Container and IaC vulnerability scanner - `kube-bench` — CIS Kubernetes Benchmark - `Falco` — Container runtime security --- ## Core Capabilities ### 1. AWS Security Auditing **When the user asks to audit AWS se...

Details

Author
Masriyan
Repository
Masriyan/Claude-Code-CyberSecurity-Skill
Created
3 months ago
Last Updated
today
Language
Python
License
MIT

Integrates with

Google Cloud · Cloud Azure · Cloud Docker · Infrastructure Kubernetes · Infrastructure Terraform · Infrastructure

Similar Skills

Semantically similar based on skill content — not just same category

DevOps & Infrastructure Listed

iac-container-security

Audit infrastructure-as-code and container security including Terraform/OpenTofu/Pulumi configurations, Dockerfile hardening, Kubernetes manifests, base image hygiene, container scanning, secrets in IaC, IAM policies, network exposure, and runtime security context. Multi-cloud (AWS, GCP, Azure). Use this skill whenever the user asks about Terraform security, tfsec, Checkov, Trivy, Dockerfile hardening, distroless images, k8s securityContext, network policies, IAM least privilege, IaC secret scanning, or 'audit my infrastructure'. Trigger on phrases like 'scan my Dockerfile', 'review my Terraform', 'audit my k8s manifests', 'harden my containers', 'IaC security', 'base image hygiene', 'container CVEs', 'trivy scan'. Use this even when only one IaC layer is mentioned.

1 Updated 6 days ago
hlsitechio
DevOps & Infrastructure Solid

cloud-security

Use this skill when securing cloud infrastructure, configuring IAM policies, managing secrets, implementing network policies, or achieving compliance. Triggers on cloud IAM, secrets management, network security groups, VPC security, cloud compliance, SOC 2, HIPAA, zero trust, and any task requiring cloud security architecture or hardening.

164 Updated today
AbsolutelySkilled
DevOps & Infrastructure Listed

cloud-security

Use this skill when securing cloud infrastructure, configuring IAM policies, managing secrets, implementing network policies, or achieving compliance. Triggers on cloud IAM, secrets management, network security groups, VPC security, cloud compliance, SOC 2, HIPAA, zero trust, and any task requiring cloud security architecture or hardening.

3 Updated today
Samuelca6399
DevOps & Infrastructure Solid

cloud-penetration-testing

This skill should be used when the user asks to "perform cloud penetration testing", "assess Azure or AWS or GCP security", "enumerate cloud resources", "exploit cloud misconfigurations", "test O365 security", "extract secrets from cloud environments", or "audit cloud infrastructure". It provides comprehensive techniques for security assessment across major cloud platforms.

27,681 Updated today
davila7
DevOps & Infrastructure Solid

cloud-penetration-testing

This skill should be used when the user asks to "perform cloud penetration testing", "assess Azure or AWS or GCP security", "enumerate cloud resources", "exploit cloud misconfigurations", "test O365 security", "extract secrets from cloud environments", or "audit cloud infrastructure". It provides comprehensive techniques for security assessment across major cloud platforms.

4,215 Updated today
zebbern