crack-hashcat
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: CRITICALCREDENTIALS_UNSAFECOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [CREDENTIALS_UNSAFE] (CRITICAL): Automated scanning detected secretsdump.py within the skill context. This script is a primary tool for dumping credentials (SAM, LSA, NTDS.dit) from local and remote systems to facilitate lateral movement.
- [COMMAND_EXECUTION] (HIGH): The use of credential dumping tools requires high-privilege command execution to access system memory and sensitive database files.
- [EXTERNAL_DOWNLOADS] (HIGH): The reference to a blacklisted URL associated with secretsdump.py suggests a high risk of remote script fetching and execution.
- [REMOTE_CODE_EXECUTION] (HIGH): This specific tool is frequently used in exploit chains to run commands on remote targets using extracted credentials.
Recommendations
- AI detected serious security threats
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata