skills/mukul975/anthropic-cybersecurity-skills/performing-privileged-account-discovery/Gen Agent Trust Hub
performing-privileged-account-discovery
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFECREDENTIALS_UNSAFECOMMAND_EXECUTION
Full Analysis
- [CREDENTIALS_UNSAFE]: The script
scripts/agent.pyaccepts LDAP bind passwords directly as command-line arguments (--password). This method is considered insecure as it can expose credentials to other system users through process listings or shell history files. - [COMMAND_EXECUTION]: The skill includes a Python script (
scripts/agent.py) that performs network-based enumeration and discovery when executed in the host environment. - [SAFE]: The implementation relies on the well-known
ldap3library for its core functionality and does not contain signs of obfuscation, persistence, or unauthorized data exfiltration.
Audit Metadata