cloud-containers
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documents the installation of several well-known security auditing and exploitation tools from public repositories, including Prowler, Pacu, ScoutSuite, and ROADtools.
- [COMMAND_EXECUTION]: Provides reference commands for executing sensitive operations required for cloud security auditing, such as mounting host filesystems, modifying IAM policies, and performing container escape techniques like cgroup notification abuse.
- [REMOTE_CODE_EXECUTION]: Describes exploitation paths for achieving code execution in various environments, including Kubernetes Kubelet API abuse and Azure DevOps pipeline manipulation, intended for use during authorized penetration tests.
- [DATA_EXFILTRATION]: Outlines methods for identifying and extracting sensitive data from cloud storage (S3, Azure Blobs, GCS) and retrieving credentials like service account tokens and SSH keys from compromised hosts.
Audit Metadata