performing-kerberoasting-attack
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The
scripts/agent.pyandscripts/process.pyfiles provide functionality to execute various security tools includingldapsearch,powershell,wevtutil, and theimpackettoolkit. These executions are intended for Active Directory enumeration and ticket manipulation as part of authorized security testing. - [EXTERNAL_DOWNLOADS]: The skill documentation references well-known security libraries such as
impacket,ldap3, andpython-evtxfor installation via standard package registries. - [SAFE]: The skill follows professional security testing standards, includes appropriate legal notices, and maps its activities to established frameworks like MITRE ATT&CK. No malicious patterns such as exfiltration, obfuscation, or unauthorized access were detected.
Audit Metadata