Open-source tool for discovering cloud risks and strengthening tenant security defenses.
Copy the install command and let the AI configure it · recommended for beginners
No copy-paste install info for "cloudsword" yet — see the docs or source repo.
Use cloudsword to inspect the current cloud tenant for risks, focusing on IAM permissions, exposed object storage, network access controls, and high-risk misconfigurations. Output a prioritized issue list with remediation advice.
A cloud risk report categorized by severity, including findings, impact scope, and remediation recommendations.
Use cloudsword to validate our cloud security baseline. Check for weak credentials, overly broad permissions, unencrypted storage, and sensitive services exposed to the public internet, then summarize failed controls.
A security baseline validation result listing failed controls, affected resources, and remediation directions.
Use cloudsword to perform preliminary reconnaissance for cloud security testing, identifying suspicious entry points, critical assets, and potential attack surfaces, then generate recommended testing priorities.
An overview of assets and attack surfaces for security testing, plus a list of recommended testing priorities.
Analyze cloud architectures and generate recommendations, diagrams, and ADRs across major clouds.
Audit IaC configs for internet-to-crown-jewel attack paths across cloud stacks.
Detect prompt injection, look up CVEs, and assess version impact.
Scan AWS environments and generate architecture diagrams for infrastructure and security.
Scan Claude Code configs for vulnerabilities, misconfigurations, and prompt injection risks.
Provides wordlists, payloads, and expert workflows for authorized security testing.