The Agent Skills Directory

[SAFE]: The skill is designed for malware analysis and forensic investigation. All analysis logic within the provided Python scripts operates locally on user-provided files without network interaction.
[COMMAND_EXECUTION]: The documentation provides examples for using established security tools such as Volatility 3, Ghidra, and IDA Pro. These are standard tools in the cybersecurity domain and are used as intended for memory forensics and reverse engineering.
[EXTERNAL_DOWNLOADS]: The skill references well-known and trusted cybersecurity resources, including NoMoreRansom.org and ID Ransomware, for checking existing decryptors and identifying ransomware families. These references are informative and point to legitimate industry services.
[DATA_EXFILTRATION]: No network exfiltration patterns were detected. The Python scripts perform entropy analysis, hash calculations, and constant scanning entirely on the local file system.
[PROMPT_INJECTION]: The skill instructions and documentation follow standard educational and technical formats without any attempts to override agent behavior or bypass safety filters.

analyzing-ransomware-encryption-mechanisms