performing-service-account-credential-rotation

Featured

Automate credential rotation for service accounts across Active Directory, cloud platforms, and application databases to eliminate stale secrets and reduce compromise risk.

AI & Automation 12,642 stars 1468 forks Updated today Apache-2.0

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Performing Service Account Credential Rotation ## Overview Service accounts are non-human identities used by applications, daemons, CI/CD pipelines, and automated processes to authenticate to systems and APIs. These accounts often have elevated privileges and their credentials (passwords, API keys, certificates, tokens) are frequently long-lived and shared across teams, making them prime targets for attackers. Credential rotation is the systematic process of replacing these secrets on a scheduled basis, propagating new credentials to all dependent systems, and verifying service continuity after rotation. ## When to Use - When conducting security assessments that involve performing service account credential rotation - When following incident response procedures for related security events - When performing scheduled security testing or auditing activities - When validating security controls through hands-on testing ## Prerequisites - Inventory of all service accounts across AD, cloud, and applications - Secrets management platform (HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, or CyberArk) - Service dependency mapping (which services use which credentials) - Change management process for rotation windows - Monitoring for service health post-rotation ## Core Concepts ### Service Account Types | Type | Platform | Credential | Rotation Method | |------|----------|-----------|-----------------| | Active Directory Service Account | Windows/AD | Password | gMSA...

Details

Author
mukul975
Repository
mukul975/Anthropic-Cybersecurity-Skills
Created
3 months ago
Last Updated
today
Language
Python
License
Apache-2.0

Integrates with

Azure · Cloud

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Featured

performing-service-account-audit

Audit service accounts across enterprise infrastructure to identify orphaned, over-privileged, and non-compliant accounts. This skill covers discovery of service accounts in Active Directory, cloud pl

12,642 Updated today
mukul975
AI & Automation Featured

aws-secrets-rotation

Automate AWS secrets rotation for RDS, API keys, and credentials

39,227 Updated today
sickn33
DevOps & Infrastructure Listed

aws-secrets-rotation

Automate AWS secrets rotation for RDS, API keys, and credentials

335 Updated today
aiskillstore
AI & Automation Featured

adobe-security-basics

Apply Adobe security best practices for OAuth credentials, secret rotation, I/O Events webhook signature verification, and least-privilege scoping. Use when securing API credentials, implementing webhook validation, or auditing Adobe security configuration. Trigger with phrases like "adobe security", "adobe secrets", "secure adobe", "adobe credential rotation", "adobe webhook signature".

2,266 Updated today
jeremylongshore
AI & Automation Solid

performing-privileged-account-discovery

Discover and inventory all privileged accounts across enterprise infrastructure including domain admins, local admins, service accounts, database admins, cloud IAM roles, and application admin account

12,642 Updated today
mukul975