Skills
skills/killvxk/malskills-zh/shellcode-fluctuation/Gen Agent Trust Hub

shellcode-fluctuation

Fail

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches source code from an external GitHub repository (github.com/mgeeky/ShellcodeFluctuation) which is intended for offensive security use.
  • [COMMAND_EXECUTION]: Provides shell commands for cloning repositories and compiling C++ code using MSVC or MinGW (git clone, x86_64-w64-mingw32-g++).
  • [REMOTE_CODE_EXECUTION]: Instructs the user on building and running a shellcode loader that implements 'fluctuation' — a technique to hide malicious code in memory by encrypting it and altering memory protection flags (RX to RW) during sleep cycles.
  • [COMMAND_EXECUTION]: Explicitly describes bypassing security monitoring (API hooks) by using indirect system calls like NtProtectVirtualMemory instead of standard Windows APIs, which is a high-risk technique typically found in malware.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Apr 9, 2026, 06:12 PM