hunt-cloud-misconfig
CommunityFind cloud misconfigs that expose real data
Software Engineering#Kubernetes#bug bounty#credential leakage#cloud misconfiguration#AWS S3#SSRFi metadata#CI/CD exposure
AuthorAKasem1
Version1.0.0
Installs0
System Documentation
What problem does it solve?
It solves the slow, manual process of identifying and proving security-impacting cloud and infrastructure misconfigurations across major platforms.
Core Features & Use Cases
- Targeted misconfiguration discovery: Enumerates common public exposure patterns like S3/GCS/Azure Blob, admin panels, CI/CD endpoints, and service ports.
- In-band validation: Verifies findings by attempting the actual data access/behavior (e.g., read/write or remote impact) rather than relying on symptoms.
- Cloud-native verification workflows: Provides a LocalStack-based testing approach to reproduce and confirm AWS misconfig issues safely.
- Use case: If you suspect a public bucket or a leaked credential bundle, this Skill helps enumerate, extract supporting evidence, and validate impact before writing your bug bounty report.
Quick Start
Tell the AI to hunt for cloud/infrastructure misconfigurations in your target by enumerating public bucket exposure, checking metadata/admin/CI/CD endpoints, and validating any suspected read/write impact safely.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: hunt-cloud-misconfig Download link: https://github.com/AKasem1/claude-bug-bounty/archive/main.zip#hunt-cloud-misconfig Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.