threat-hunting-evasion

SUSPICIOUS: the skill is internally coherent as an offensive evasion guide, but its purpose is to help operators avoid threat hunting and detection rather than perform benign developer tasks. It has low supply-chain and exfiltration risk in the provided text, but high security risk because it gives an AI agent offensive security/evasion capability.

This artifact is not benign dependency code; it is an attack-focused detection-evasion and operational tradecraft write-up. It contains a functional Python YARA rule scanner (reads local rules/payload paths and prints match details) intended for adversarial payload validation, plus illustrative loader and offensive technique examples (including an in-memory assembly download/reflective execution pattern). Even though the snippet does not prove actual malware execution on its own, its strong malicious intent and inclusion of execution-oriented patterns make it a high-risk supply-chain security concern.