anti-reversing-techniques
Fail
Audited by Snyk on Jun 16, 2026
Risk Level: CRITICAL
Full Analysis
CRITICAL E006: Malicious code pattern detected in skill scripts.
- Malicious code pattern detected (high risk: 0.90). This skill, though labeled “authorized use only,” contains multiple high-risk, dual‑use techniques that clearly enable malicious behavior (dynamic API resolution and hashing, string encryption/stack-string URL hiding, self‑modifying / in‑memory decryption + execute patterns, API/PEB patching and anti‑debug/anti‑VM evasion, packer/unpacker tampering and obfuscation) — all of which facilitate covert execution, remote code injection, and anti-analysis/backdoor capabilities.
MEDIUM W013: Attempt to modify system services in skill instructions.
- Attempt to modify system services in skill instructions detected (high risk: 1.00). This skill explicitly describes and instructs bypassing anti-debug/anti-VM protections and modifying system/binary state (patching bytes, altering PEB/registry, deleting guest tools, LD_PRELOAD hooks, etc.), actions that change the host system and can require elevated/sudo privileges, so it poses a clear risk to the machine state.
Issues (2)
E006
CRITICALMalicious code pattern detected in skill scripts.
W013
MEDIUMAttempt to modify system services in skill instructions.
Audit Metadata