hunt-ldap
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides instructional content and testing scripts for LDAP and XPath injection. The use of curl for interacting with targets and python3 for payload encoding or result parsing is consistent with its stated purpose of security auditing. No malicious behavior was identified.
- [COMMAND_EXECUTION]: The skill includes bash scripts designed to be executed by the agent to test remote endpoints for vulnerabilities. These commands are constrained to the testing context, using variables for target specification, and do not attempt to access sensitive local files or escalate privileges.
- [EXTERNAL_DOWNLOADS]: Network operations are directed towards target endpoints specified in variables (e.g., $TARGET). The skill does not perform downloads of external scripts or code for remote execution.
Audit Metadata