mitm-subdomains

SUSPICIOUS: the tool provenance is coherent and low supply-chain risk, but the skill’s actual purpose is AI-assisted reconnaissance using intercepted traffic, which squarely fits offensive security capability. No clear credential harvesting or exfiltration path is present, so this is high-risk security tooling rather than confirmed malware.