The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The agent optionally fetches binary metadata from the official LOLBAS project API at lolbas-project.github.io. This is a well-known and trusted community resource used to provide up-to-date detection signatures for common Windows binary abuses.
[SAFE]: The skill performs static analysis of log data using pre-defined regular expression signatures and does not invoke any system commands or execute external code. No evidence of data exfiltration, credential theft, or persistence mechanisms was found.

detecting-living-off-the-land-attacks