cloudtrail-threat-detector
Analyze AWS CloudTrail logs for suspicious patterns, unauthorized changes, and MITRE ATT&CK indicators
data-transfer-optimizer
Identify and reduce AWS data transfer costs — inter-region, cross-AZ, and NAT Gateway charges
key-vault-auditor
Audit Azure Key Vault configuration, access policies, and secret hygiene for credential exposure risks
iam-policy-auditor
Audit AWS IAM policies and roles for over-privilege, wildcard permissions, and least-privilege violations
guardduty-explainer
Translate GuardDuty findings into plain-English incident summaries with actionable response steps
compliance-analyzer
Map AWS environment against CIS, SOC 2, HIPAA, or PCI-DSS controls with prioritized remediation
s3-exposure-auditor
Identify publicly accessible S3 buckets, dangerous ACLs, and misconfigured bucket policies
reservations-hybrid-advisor
Recommend optimal Azure Reservations and Hybrid Benefit coverage for maximum stacked savings
bandwidth-optimizer
Identify and reduce Azure bandwidth and egress costs — often the most invisible Azure cost driver
terraform-reviewer
Review Terraform plans and HCL files for AWS security misconfigurations before deployment
security-group-auditor
Audit AWS Security Groups and VPC configurations for dangerous internet exposure
spot-vm-strategy
Design an interruption-resilient GCP Spot VM strategy for eligible workloads with 60-91% savings
bigquery-optimizer
Analyze BigQuery query patterns and storage to dramatically reduce the
storage-exposure-auditor
Identify publicly accessible Azure Storage accounts and misconfigured blob containers
spend-analyzer
Analyze AWS Cost & Usage Reports to identify top cost drivers, waste, and anomalies across all linked accounts
entra-id-auditor
Audit Microsoft Entra ID for over-privileged roles, dangerous access patterns, and identity security gaps
secrets-scanner
Detect hardcoded secrets, exposed API keys, and credential misconfigurations in IaC and config files
idle-resource-detector
Detect AWS idle and zombie resources consuming cost with zero meaningful utilization
tagging-auditor
Audit AWS resource tagging compliance and identify unallocatable spend for FinOps teams
devtest-optimizer
Optimize Azure dev/test environment costs with auto-shutdown schedules and Dev/Test pricing enrollment
cud-advisor
Recommend optimal GCP Committed Use Discount portfolio (spend-based vs resource-based) with risk analysis
networking-optimizer
Identify and reduce GCP networking and egress costs across projects and regions
terraform-ai-skills
Use when bulk-managing Terraform modules at scale — upgrading providers across AWS, GCP, Azure, or DigitalOcean repositories, standardizing GitHub Actions wo...
anomaly-explainer
Diagnose AWS cost anomalies and explain root cause in plain English when spend spikes unexpectedly
defender-posture-reviewer
Interpret Microsoft Defender for Cloud Secure Score and generate a prioritized remediation roadmap
finops-report
Generate executive-ready monthly AWS FinOps reports with team-level chargeback and savings opportunities
activity-log-detector
Analyze Azure Activity Logs and Sentinel incidents for suspicious patterns and attack indicators
nsg-firewall-auditor
Audit Azure NSG rules and Azure Firewall policies for dangerous internet exposure
spot-strategy
Design an interruption-resilient EC2 Spot instance strategy with fallback configurations
ri-savings-advisor
Recommend optimal Reserved Instance and Savings Plan portfolio based on AWS usage patterns
