security-group-scan
CommunityFind exposed AWS ports in minutes.
Legal & Compliance#aws#remediation#incident response#network auditing#security groups#inbound rules#public exposure
Authorafoxnyc3
Version1.0.0
Installs0
System Documentation
What problem does it solve?
It helps you quickly identify overly permissive AWS security group inbound rules that expose sensitive services to the public internet.
Core Features & Use Cases
- Risk-ranked exposure scanning: Detects 0.0.0.0/0 and ::/0 inbound rules across security groups.
- Sensitive port identification: Flags commonly abused ports such as SSH (22), RDP (3389), and major database ports.
- Exposure verification: For HIGH/CRITICAL findings, identifies instances in the security group to confirm real impact.
- Remediation guidance: Provides prioritized recommendations and example revoke-ingress commands.
Quick Start
Ask the AI to run security-group-scan for your account using the default AWS region environment variables and report the highest-risk public inbound rules it finds.
Dependency Matrix
Required Modules
None requiredComponents
scripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: security-group-scan Download link: https://github.com/afoxnyc3/chelsea-piers-itops/archive/main.zip#security-group-scan Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.