apt-emulation
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions to download and install legitimate security tools from well-known repositories, including MITRE's CALDERA (github.com/mitre/caldera) and Red Canary's Atomic Red Team (github.com/redcanaryco/atomic-red-team.git).
- [COMMAND_EXECUTION]: Detailed command-line examples are provided for using security testing tools (e.g., PowerShell's
Invoke-AtomicTestand CALDERA's agent deployment). These are documented as part of an adversary emulation methodology. - [REMOTE_CODE_EXECUTION]: The skill includes templates for 'download cradles' (e.g., using
System.Net.WebClientorcertutil) intended for simulating APT behavior during red team exercises. These use placeholder URLs and are presented in an educational context.
Audit Metadata