skills/bytelandtechnology/headless-ghidra/headless-ghidra-frida-verify/Socket

headless-ghidra-frida-verify

Warn

Audited by Socket on Apr 24, 2026

1 alert found:

Security

SecuritySKILL.md

MEDIUM

SecurityMEDIUM

SKILL.md

SUSPICIOUS: the skill’s reverse-engineering capabilities broadly match its purpose, but it grants an AI agent high-impact Frida-based execution/attachment abilities and requires an unverifiable external wrapper CLI (`ghidra-agent-cli`). There is no clear evidence of credential theft or external exfiltration, so this is not confirmed malware, but it is a high-risk skill due to offensive tooling and install-trust concerns.

Confidence: 84%Severity: 82%

Audit Metadata

Analyzed At

Apr 24, 2026, 08:14 AM

Package URL

pkg:socket/skills-sh/ByteLandTechnology%2Fheadless-ghidra%2Fheadless-ghidra-frida-verify%2F@44d05ebd4176f4657c175ac79923ef4932ce80cb