network-101
Warn
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill makes extensive use of
sudoand administrative commands to install software, modify system configurations, and manage services (e.g.,apt install,systemctl start,ufw allow). - [CREDENTIALS_UNSAFE]: The skill hardcodes insecure default community strings (
publicandprivate) into the SNMP configuration file (/etc/snmp/snmpd.conf). - [PRIVILEGE_ESCALATION]: The skill creates world-writable directories using
sudo chmod 777 /srv/samba/share, which allows any user on the system to read, write, or delete files in that path. - [INDIRECT_PROMPT_INJECTION]: The skill includes commands to parse and analyze system logs that contain data from external network requests.
- Ingestion points: The skill reads
/var/log/apache2/access.logusinggrepandawkto extract POST requests and User-Agent strings. - Boundary markers: There are no boundary markers or instructions to ignore malicious content within the logs.
- Capability inventory: The agent has access to powerful tools including
sudo,apt,systemctl, and various network utilities (nmap,smbclient,openssl). - Sanitization: No sanitization or validation is performed on the log data before processing.
Audit Metadata