cloud-iam-audit
Fail
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: HIGHCOMMAND_EXECUTIONDATA_EXFILTRATIONREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: Provides extensive command-line sequences for AWS, Azure, GCP, and Tencent Cloud CLI tools to enumerate permissions and execute administrative tasks.
- [DATA_EXFILTRATION]: Contains specific instructions for identifying and downloading sensitive files such as .env, backups, and secret keys from cloud storage services like S3 and COS.
- [REMOTE_CODE_EXECUTION]: Outlines steps to deploy and run code through AWS Lambda and Tencent Cloud SCF to leverage service roles for unauthorized actions.
- [EXTERNAL_DOWNLOADS]: Fetches the coscli utility from Tencent Cloud's official software repository using wget.
- [CREDENTIALS_UNSAFE]: Includes methodologies for detecting and extracting cloud credentials, including long-term AK/SK and temporary session tokens, from environment variables and metadata endpoints.
Recommendations
- AI detected serious security threats
Audit Metadata