competition-windows-pivot

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly requires recovering and preserving raw credential artifacts (passwords, hashes, Kerberos tickets, DPAPI blobs, LSASS material) and "raw host artifacts" and "ticket fields," which would force the LLM to handle and potentially output secret values verbatim.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). 该技能文档明确提供了提取Windows凭证（SAM/NTDS/LSA/DPAPI）、重放Kerberos票据、跟踪/触发WinRM/SMB/RDP等远程通道以实现主机间横向移动和权限获取的具体操作步骤，直接描述并帮助执行凭证窃取、复放攻击和远程滥用，属于高度可被滥用的恶意能力。