Active Directory Attacks

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt contains many example commands and workflows that embed plaintext credentials, hashes, and tokens directly (e.g., user:password, -p 'Password123', -hashes :NTHASH, KRBTGT_HASH, HEXPASSWORD), which require the LLM to output secret values verbatim and thus creates exfiltration risk.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). The content is explicitly malicious: it provides step‑by‑step instructions and tooling to steal credentials, forge Kerberos tickets, perform DCSync/pass‑the‑hash/NTLM relay attacks, and establish persistence/backdoors (via GPO, SCCM/WSUS, certificate abuse, Golden/Silver tickets, etc.), all of which enable unauthorized domain compromise, lateral movement, privilege escalation, and persistent remote access.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs running privileged commands that change host state (e.g., "sudo date -s", faketime, network-sniffing/responders requiring root) and guides persistent/privilege‑escalation actions, so it pushes the agent to modify the machine's state.