hunt-subdomain
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides numerous shell commands for the agent to execute, utilizing standard security tools like subfinder, amass, nuclei, and subjack to perform automated network enumeration and vulnerability scanning.
- [PROMPT_INJECTION]: The skill demonstrates an indirect prompt injection attack surface by processing untrusted data from external DNS records and HTTP responses.
- Ingestion points: Data enters the context through the output of DNS resolution tools and direct HTTP requests via curl during fingerprinting.
- Boundary markers: The instructions lack explicit boundary markers or directions to disregard instructions potentially embedded within the ingested external content.
- Capability inventory: The methodology employs powerful system utilities and specialized scanners including dig, curl, and nuclei.
- Sanitization: No validation or sanitization of the content retrieved from external sources is performed before it is processed by the agent.
Audit Metadata