Skills
skills/elementalsouls/claude-bughunter/enterprise-vpn-attack/Gen Agent Trust Hub

enterprise-vpn-attack

Fail

Audited by Gen Agent Trust Hub on May 24, 2026

Risk Level: HIGHCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides numerous shell commands for active network scanning, service fingerprinting, and exploitation of remote systems using tools like curl and nuclei.- [DATA_EXFILTRATION]: Contains commands designed to retrieve sensitive files and session data from target appliances, such as /etc/passwd via CVE-2019-11510, sslvpn_websession via CVE-2018-13379, or memory dumps via CVE-2023-4966 (Citrix Bleed).- [DYNAMIC_EXECUTION]: Uses inline python3 commands to dynamically generate large string payloads for memory disclosure exploitation tests.- [INDIRECT_PROMPT_INJECTION]: \n
  • Ingestion points: Processes HTTP response headers and bodies from untrusted remote targets (file: SKILL.md)\n
  • Boundary markers: Absent. No delimiters or warnings are used to distinguish target data from agent instructions.\n
  • Capability inventory: Utilizes curl, grep, python3, and nuclei for system and network interaction (file: SKILL.md)\n
  • Sanitization: Absent. No sanitization or validation of the ingested remote content is performed before it is processed or displayed in the agent context.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
May 24, 2026, 01:58 AM
Security Audit — agent-trust-hub — enterprise-vpn-attack