skills/mukul975/anthropic-cybersecurity-skills/detecting-ransomware-precursors-in-network/Gen Agent Trust Hub
detecting-ransomware-precursors-in-network
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is designed for defensive security monitoring. All analyzed scripts and instructions are consistent with this intended purpose and do not exhibit malicious behavior or unnecessary privilege requests.
- [EXTERNAL_DOWNLOADS]: The skill includes instructions to fetch threat intelligence indicators from well-known and reputable sources, such as abuse.ch and CISA (a trusted organization). these downloads are intended for updating blocklists and detection rules, and do not involve the execution of untrusted remote code.
- [COMMAND_EXECUTION]: The monitoring agent utilizes standard system utilities like 'ps', 'tasklist', and PowerShell's 'Get-WinEvent' for security telemetry collection. These commands are executed using hardcoded strings and do not incorporate unsanitized user input, mitigating the risk of command injection.
Audit Metadata