offensive-toctou

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This content is an explicit offensive exploitation manual describing step-by-step TOCTOU race techniques (symlink swaps, rename exchange, bind mounts, userfaultfd, cgroup freeze, FUSE slowfs, single-packet HTTP/2, etc.) that enable unauthorized file access (e.g. /etc/shadow), container escapes, privilege escalation and remote code execution, and thus has clear malicious intent and high abuse potential.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt gives detailed, actionable instructions and commands for performing filesystem/kernel/container races and privileged operations (e.g., ln to /etc/passwd, mount --bind /etc/shadow, unshare, cgroup freeze, userfaultfd) that directly modify system state and enable privilege escalation or container escape.