SMTP Penetration Testing

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). Although framed as authorized penetration testing guidance, the content contains explicit, actionable instructions for user enumeration, credential brute‑forcing, open‑relay exploitation, header injection and email spoofing (including an example explicitly for "phishing preparation"), which directly enable credential theft, spam/exfiltration, and targeted abuse.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to connect to arbitrary external SMTP servers and ingest their responses (e.g., Phase 3 "telnet TARGET_IP 25" banner grabbing, Phase 4/5 VRFY/EXPN/RCPT user-enumeration and the example scripts using smtp-user-enum and nmap), so it reads untrusted, user-controlled third-party content whose text can influence subsequent actions.