kali-tools

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 0.90). The SKILL content is a Kali Linux tools catalogue that deliberately documents and gives usage examples for many offensive capabilities (backdoors, C2 frameworks, reverse shells, credential-dumpers, exfiltration/tunneling tools, automated exploitation frameworks) and includes a remote install via "curl | bash" plus guidance to store API keys and cache LLM responses—together these are high-risk patterns useful for abuse and supply‑chain/backdoor attacks.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The README includes a one-line installer that runs a remote script via curl -fsSL https://raw.githubusercontent.com/tzf1003/ChatKali/main/scripts/install.sh | bash, which fetches and executes remote code at install/runtime and is presented as the agent integration installation method.