Skills
skills/aradotso/trending-skills/wx-favorites-report/Gen Agent Trust Hub

wx-favorites-report

Fail

Audited by Gen Agent Trust Hub on Apr 18, 2026

Risk Level: HIGHCOMMAND_EXECUTIONDATA_EXFILTRATIONCREDENTIALS_UNSAFE
Full Analysis
  • [COMMAND_EXECUTION]: Binary modification using codesign to strip Hardened Runtime from an application bundle.
  • [COMMAND_EXECUTION]: Use of Frida dynamic instrumentation to hook system libraries and inject code into the WeChat process for runtime manipulation.
  • [DATA_EXFILTRATION]: Accesses sensitive private application data located in ~/Library/Containers/com.tencent.xinWeChat/ to read the encrypted local database favorite.db.
  • [CREDENTIALS_UNSAFE]: Extracts PBKDF2-derived encryption keys from memory by intercepting calls to CCKeyDerivationPBKDF in libcommonCrypto.dylib via Frida hooks.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Apr 18, 2026, 01:33 PM