Skills
skills/mukul975/anthropic-cybersecurity-skills/deobfuscating-powershell-obfuscated-malware/Snyk

deobfuscating-powershell-obfuscated-malware

Warn

Audited by Snyk on Apr 7, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W013: Attempt to modify system services in skill instructions.

  • Attempt to modify system services in skill instructions detected (high risk: 0.90). The prompt explicitly instructs executing potentially malicious PowerShell in-place (using '-ExecutionPolicy Bypass' and running temp .ps1 files), which bypasses PowerShell security protections and can modify system state despite recommending a sandbox.

Issues (1)

W013
MEDIUM

Attempt to modify system services in skill instructions.

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 7, 2026, 06:46 PM
Issues
1