The Agent Skills Directory

[COMMAND_EXECUTION]: The skill provides documentation and workflows for executing AWS CLI commands and third-party security tools (Pacu, CloudFox, PMapper).
These commands are intended for security auditing and authorized penetration testing within an AWS environment.
The commands are transparent and align with the skill's stated purpose of identifying IAM misconfigurations.
[EXTERNAL_DOWNLOADS]: The documentation references several well-known security tools used by the industry.
It suggests installing pacu, principalmapper (PMapper), and cloudfox.
These tools originate from reputable security organizations (Rhino Security Labs, NCC Group, and Bishop Fox) and are standard requirements for cloud security assessments.
[SAFE]: The provided Python script (scripts/agent.py) uses the official AWS SDK (boto3) to enumerate IAM entities and evaluate policies for dangerous permission combinations.
Analysis is performed locally, and results are saved to a local JSON file for reporting.
No network exfiltration or unauthorized access attempts were identified in the source code.

performing-aws-privilege-escalation-assessment