exploiting-ms17-010-eternalblue-vulnerability

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This skill explicitly provides step-by-step exploitation guidance for MS17-010 including reverse-shell payloads (Meterpreter/Cobalt Strike), generated exploit commands, and post‑exploitation actions (persistence, credential dumping, pivoting), which directly enable remote code execution, backdoors and credential theft and therefore poses a high malicious/abuse risk unless used only with strict authorization.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's runtime scripts (scripts/agent.py and scripts/process.py) actively connect to arbitrary target IPs and run nmap subprocesses, ingesting SMB service responses and nmap output from untrusted external hosts which the workflow uses to mark hosts "vulnerable" and to generate/drive exploitation commands.