performing-privileged-account-access-review
CommunityEnforce least privilege for privileged accounts.
AuthorAcczdy
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Organizations often accumulate privileged accounts with excessive permissions, unknown owners, or long periods of inactivity, creating high-risk attack surfaces and compliance gaps. This Skill provides a repeatable process to discover, validate, and remediate privileged access so teams can reduce risk and produce audit evidence.
Core Features & Use Cases
- Discovery & Inventory: Enumerates privileged accounts across Active Directory, AWS IAM, Azure AD, databases, and PAM vaults to create a consolidated inventory.
- Automated Checks: Detects stale accounts, shared/generic accounts without owners, excessive privilege assignments, and overdue recertification using configurable thresholds.
- Review Campaigns & Reporting: Generates reviewer CSVs and JSON compliance reports with severity summaries and findings for remediation tracking.
- Use Case: Run a quarterly campaign to identify domain admins, service accounts, and cloud owners, certify required access, disable orphaned accounts, and export a compliance report for auditors.
Quick Start
Use the performing-privileged-account-access-review skill to scan a privileged account CSV and produce a compliance JSON report.
Dependency Matrix
Required Modules
ldap3boto3msalrequestspandasopenpyxl
Components
scriptsreferencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: performing-privileged-account-access-review Download link: https://github.com/Acczdy/MoZiSec/archive/main.zip#performing-privileged-account-access-review Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.