hunt-cloud-misconfig
Identifies and validates cloud infrastructure misconfigurations across AWS, GCP, and Azure to enhance security posture.
Install this skill
or
67/100
Security score
The hunt-cloud-misconfig skill was audited on May 29, 2026 and we found 13 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 11
Curl to non-GitHub URL
SourceSKILL.md
| 11 | curl -s "https://TARGET-NAME.s3.amazonaws.com/?max-keys=10" |
medium line 16
Curl to non-GitHub URL
SourceSKILL.md
| 16 | curl -s -o /dev/null -w "$name: %{http_code}\n" "https://$name.s3.amazonaws.com/" |
medium line 20
Curl to non-GitHub URL
SourceSKILL.md
| 20 | curl -s "https://TARGET-APP.firebaseio.com/.json" # read |
medium line 21
Curl to non-GitHub URL
SourceSKILL.md
| 21 | curl -s -X PUT "https://TARGET-APP.firebaseio.com/test.json" -d '"pwned"' # write |
low line 33
Access to .env file
SourceSKILL.md
| 33 | /phpMyAdmin /.env /config.json /api-docs /server-status |
medium line 60
Access to .env file
SourceSKILL.md
| 60 | - **`cloud-iam-deep`** — A leaked SA JSON / AWS key in a public bucket is only half the bug. Chain primitive: Public S3 + leaked AWS key in `.env` → `cloud-iam-deep` enumeration → cross-service `iam:P |
low line 11
External URL reference
SourceSKILL.md
| 11 | curl -s "https://TARGET-NAME.s3.amazonaws.com/?max-keys=10" |
low line 16
External URL reference
SourceSKILL.md
| 16 | curl -s -o /dev/null -w "$name: %{http_code}\n" "https://$name.s3.amazonaws.com/" |
low line 20
External URL reference
SourceSKILL.md
| 20 | curl -s "https://TARGET-APP.firebaseio.com/.json" # read |
low line 21
External URL reference
SourceSKILL.md
| 21 | curl -s -X PUT "https://TARGET-APP.firebaseio.com/test.json" -d '"pwned"' # write |
low line 26
External URL reference
SourceSKILL.md
| 26 | http://169.254.169.254/latest/meta-data/iam/security-credentials/ # role name |
low line 27
External URL reference
SourceSKILL.md
| 27 | http://169.254.169.254/latest/meta-data/iam/security-credentials/ROLE-NAME # keys |
low line 49
External URL reference
SourceSKILL.md
| 49 | export AWS_ENDPOINT_URL=http://localhost:14566 |
Scanned on May 29, 2026
View Security Dashboard