← Back to Skills

Security Group Analyzer

🌐Community
by armanzeroeight · vlatest · Repository

Analyzes AWS Security Groups to identify overly permissive rules and potential vulnerabilities based on armanzeroeight's best practices.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add security-group-analyzer npx -- -y @trustedskills/security-group-analyzer
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "security-group-analyzer": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/security-group-analyzer"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

The security-group-analyzer skill analyzes AWS security group configurations to identify potential vulnerabilities and misconfigurations. It assesses rules for overly permissive access, unused ports, and other common security risks. The tool provides actionable recommendations to improve the overall security posture of your AWS environment.

When to use it

  • Security Audits: Regularly assess security groups as part of a broader security audit process.
  • New Deployments: Analyze newly created or modified security group rules before deployment to prevent misconfigurations.
  • Compliance Checks: Verify security group configurations against industry best practices and compliance requirements (e.g., CIS benchmarks).
  • Incident Response: Investigate potential vulnerabilities identified during a security incident by examining relevant security groups.

Key capabilities

  • AWS Security Group Analysis
  • Rule Permissiveness Assessment
  • Unused Port Detection
  • Security Recommendation Generation

Example prompts

  • "Analyze the security group 'web-server-sg' and report any potential vulnerabilities."
  • “Check if security group ‘database-sg’ allows inbound SSH access.”
  • "Generate a list of unused ports in all security groups within VPC id 'vpc-xxxxxxxx'."

Tips & gotchas

Requires appropriate AWS credentials with permissions to describe security groups. The accuracy of the analysis depends on the completeness and correctness of the provided AWS environment details.

View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
armanzeroeight
Installs
5
Repository (canonical source) →

🌐 Community

Passed automated security scans.