cloud-iam-deep
CommunityValidate cloud creds and find escalation paths fast
Software Engineering#privilege escalation#cloud iam#kubernetes rbac#aws sts#azure managed identity#gcp service account#ssrf imds
AuthorAKasem1
Version1.0.0
Installs0
System Documentation
What problem does it solve?
cloud-iam-deep eliminates guesswork after a cloud credential is exposed by quickly validating what the credential can access and mapping likely IAM privilege-escalation paths across AWS, Azure, and GCP.
Core Features & Use Cases
- Credential validation in minutes: Verifies identity and enumerates what IAM permissions the exposed AWS key, Azure credential/managed identity context, or GCP service account can actually exercise.
- External-only cloud attack chain analysis: Focuses on paths that start from externally reachable leakage (e.g., leaked key/JSON, SSRF reaching metadata/IMDS, exposed K8s tokens) and then reasons about post-credential discovery privilege analysis.
- Privilege escalation pattern guidance: Provides structured escalation techniques (e.g., AWS STS chaining and IMDSv1/v2 SSRF considerations, Azure Managed Identity abuse, GCP service-account JSON abuse, Kubernetes SA token abuse) while emphasizing guardrails and audit awareness.
Quick Start
Use the cloud-iam-deep skill to validate the exposed AWS access key and summarize what actions it permits plus the highest-priority escalation patterns it enables.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: cloud-iam-deep Download link: https://github.com/AKasem1/claude-bug-bounty/archive/main.zip#cloud-iam-deep Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.