skills/mukul975/anthropic-cybersecurity-skills/analyzing-network-covert-channels-in-malware/Gen Agent Trust Hub
analyzing-network-covert-channels-in-malware
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate cybersecurity tools for malware network forensics and analysis.
- [EXTERNAL_DOWNLOADS]: The instructions and scripts reference established third-party libraries including scapy, dpkt, and dnslib for packet processing.
- [COMMAND_EXECUTION]: The included scripts (SKILL.md and scripts/agent.py) are transparent tools for PCAP analysis and do not contain hidden or malicious command execution patterns.
- [DATA_EXFILTRATION]: The analysis is performed locally on user-provided capture files with no evidence of unauthorized network transmission of sensitive data.
- [PROMPT_INJECTION]: No malicious instructions designed to bypass agent safety filters or override system prompts were found.
- [INDIRECT_PROMPT_INJECTION]: While the skill ingests untrusted data in the form of PCAP files (scripts/agent.py and SKILL.md), it lacks capabilities for arbitrary execution of packet data, and the use of robust decoding methods (errors='replace') provides basic sanitization against malformed input.
Audit Metadata