SMTP Penetration Testing

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). Although framed as authorized penetration testing, the content provides explicit, actionable instructions for user enumeration, brute-force credential attacks, open-relay exploitation, and spoofing/header injection — high-risk techniques that enable credential theft and abuse if used without authorization.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill instructs connecting to arbitrary SMTP servers and DNS records (e.g., telnet/nc/nmap banner grabbing, smtp-user-enum, and dig MX/TXT lookups) and explicitly directs parsing of server banners and command responses, which are untrusted third-party outputs the agent would read and interpret.