The Agent Skills Directory

[COMMAND_EXECUTION]: The Python scripts scripts/agent.py and scripts/process.py execute system commands via subprocess.run to interface with the AWS CLI and ScoutSuite. These calls use argument lists, which prevents shell injection.
[EXTERNAL_DOWNLOADS]: The skill references standard security tooling and libraries such as boto3, ScoutSuite, Pacu, and Prowler. All references point to legitimate industry tools and are documented for user installation.
[DATA_EXFILTRATION]: The skill includes instructions and scripts for accessing sensitive cloud metadata (via the EC2 instance metadata service at 169.254.169.254) and enumerating IAM permissions and storage bucket ACLs. These capabilities are intended for security auditing and do not perform unauthorized data transmission.

conducting-cloud-infrastructure-penetration-test