fscan
Warn
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions to download the fscan tool from a non-trusted GitHub repository (github.com/shadow1ng/fscan.git) and build it from source.
- [COMMAND_EXECUTION]: Documents the use of specific flags (e.g., -c) for executing arbitrary shell commands on remote systems via SSH and Redis exploitation.
- [EXTERNAL_DOWNLOADS]: Suggests installation via Arch Linux community packages (fscan-git, fscan-fscan) which are not verified by official package maintainers.
Audit Metadata