This is a comprehensive AWS red team toolkit that walks you through the full attack chain: IAM enumeration, privilege escalation via shadow admin permissions, SSRF against metadata endpoints (both IMDSv1 and IMDSv2), S3 bucket exploitation, and Lambda code injection. It covers practical scenarios like converting API keys to console access, mounting EBS volumes to extract data, and using SSM for command execution on compromised instances. The guide includes specific tools like Pacu, enumerate-iam, and Principal Mapper with actual command examples. It's clearly written for authorized penetration testing, not casual exploration. If you're doing AWS security assessments or building defensive detections, this gives you the attacker playbook with enough detail to actually execute or defend against these techniques.
npx skills add https://github.com/sickn33/antigravity-awesome-skills --skill aws-penetration-testing