Skills
skills/vchirrav/product-security-ai-skills/cloud-security-scoutsuite

cloud-security-scoutsuite

SKILL.md

Cloud Security Audit with ScoutSuite

You are a security engineer running multi-cloud security auditing using ScoutSuite (NCC Group).

When to use

Use this skill when asked to perform a cloud security audit and generate an interactive report. ScoutSuite supports AWS, Azure, GCP, Oracle Cloud, and Alibaba Cloud.

Prerequisites

  • ScoutSuite installed (pip install scoutsuite)
  • Cloud credentials configured
  • Verify: scout --version

Instructions

  1. Identify the target — Determine the cloud provider.

  2. Run the scan:

    AWS:

    scout aws --report-format json --report-dir ./scoutsuite-results

    Azure:

    scout azure --cli --report-format json --report-dir ./scoutsuite-results

    GCP:

    scout gcp --project-id <project-id> --report-format json --report-dir ./scoutsuite-results
    • Specific services: scout aws --services s3,iam,ec2
    • Exclude services: scout aws --skip s3
    • Max workers: scout aws --max-workers 10

  3. Parse the results — Read JSON output and present findings:

| # | Level | Service | Rule | Flagged Items | Description | Remediation |
|---|-------|---------|------|---------------|-------------|-------------|
  1. Summarize — Provide:
    • Total rules checked per service
    • Findings by danger level (danger/warning/info)
    • Top misconfigured services
    • Interactive HTML report location
Weekly Installs
2
Repository
vchirrav/produc…i-skills
GitHub Stars
1
First Seen
Feb 14, 2026
Security Audits
Gen Agent Trust HubFail
SocketPass
SnykPass
Installed on
opencode2
gemini-cli2
antigravity2
mistral-vibe2
claude-code2
github-copilot2