analyzing-cobaltstrike-malleable-c2-profiles

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). This skill instructs the agent to parse profiles and output extracted HTTP headers, URIs, staging URIs and other raw C2 configuration values verbatim, which could include embedded tokens, cookies, or other secrets and therefore risks secret exfiltration.