performing-thick-client-application-penetration-test

SUSPICIOUS: the skill is internally coherent as a thick-client pentesting guide, but it gives an AI agent high-risk offensive security capabilities including auth bypass, SSL pinning bypass, DLL hijacking, memory tampering, and API abuse testing. Install provenance is mostly acceptable for named tools, with minor uncertainty around external Frida scripts; the primary concern is the exploit-focused operational scope rather than deceptive data exfiltration.