antigravity-awesome-skills / aws-penetration-testing

Provides multiple methods to escalate privileges to AdministratorAccess, including creating new access keys for other users, attaching admin policies to the current user, and injecting malicious code into Lambda functions.

highskills/aws-penetration-testing:138

Instructs the agent to modify its user-agent or use specific tools to bypass AWS GuardDuty security alerts, indicating malicious intent to avoid detection.

highskills/aws-penetration-testing:331

Instructions for creating snapshots of EBS volumes and mounting them to an attacker-controlled instance to steal data, including sensitive Active Directory databases (NTDS.dit) via Shadow Copy attacks.

highskills/aws-penetration-testing:271

The skill provides explicit instructions on how to delete or disable AWS CloudTrail logs to cover tracks and evade detection. This is a direct attempt to bypass security controls.

criticalskills/aws-penetration-testing:316

Detailed instructions for exploiting SSRF to exfiltrate temporary AWS credentials from the EC2 metadata service (IMDSv1 and IMDSv2) and Fargate containers.

criticalskills/aws-penetration-testing:101