performing-privilege-escalation-assessment

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This skill contains explicit, actionable offensive instructions (reverse shells and msfvenom MSI generation, sudo/SUID abuse and /etc/passwd modification, kernel exploit usage, service binary replacement, token-impersonation tools like JuicyPotato/PrintSpoofer, cron/script tampering, and cloud metadata/IAM abuse) that enable privilege escalation, credential theft, remote code execution and persistence — all high-risk behaviors that can be used as backdoors or for malicious compromise.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt explicitly instructs creating new root users, modifying system and service binaries/configuration, deploying kernel exploits, and other actions that directly modify or compromise the host system state, so it must be flagged.