技能 telnetshell 審計紀錄
📦

審計紀錄

telnetshell - 6 審計

審計版本 6

最新 嚴重

Jun 28, 2026, 05:15 PM

Static analysis findings are confirmed in context. The skill is a telnet shell automation package for IoT penetration testing, but it includes explicit persistence, backdoor, credential harvesting, data extraction, firmware export, and trace removal guidance. Because these instructions enable post-exploitation and evasion, this skill should be blocked from marketplace publication.

8
已掃描檔案
2,015
分析行數
13
發現
codex
審計單位

嚴重問題 (3)

Backdoor and Persistence Instructions
The skill provides explicit steps to add SSH authorized keys, append a telnet backdoor to startup scripts, and launch shell access on a new port. This goes beyond authorized enumeration and enables persistent unauthorized access.
Trace Removal and Log Deletion Guidance
The examples include an automated cleanup script that deletes temporary files, removes log files, and clears shell history. These are evasion steps that reduce auditability after device access.
Credential and Sensitive Data Extraction
The skill instructs users to read password files, search for keys and credentials, and extract configuration files, shadow files, and databases from remote devices.

高風險問題 (3)

Remote Command Execution Wrapper
The helper spawns telnet and sends arbitrary command strings supplied through command, script, or interactive modes to a target host. This is expected for the tool, but it provides direct remote shell automation.
Network Reconnaissance and Internal Scanning
The skill includes commands for enumerating listening services, routing, firewall state, and scanning a local subnet from the compromised device.
Firmware and Device Data Export
The documentation instructs users to dump flash partitions and transfer firmware over the network. This can expose proprietary firmware and sensitive device contents.
中風險問題 (2)
Sensitive Session Logging Defaults
The helper logs telnet I/O to a default temporary log path. Since sessions may include commands, credentials, and sensitive output, this can create local exposure if not protected.
Privilege Escalation Enumeration
The skill directs users to identify SUID binaries, writable service files, sudo permissions, cron jobs, and shell escape paths. These checks can support defensive audits but also enable exploitation.
低風險問題 (1)
Prompt Injection Search Had No Matches
A targeted search for common prompt injection phrases did not find evidence of instruction override text in the reviewed files.

偵測到的模式

Arbitrary Telnet Shell CommandsCredential File DiscoveryCleanup Commands That Remove Evidence

審計版本 5

中風險

Jan 16, 2026, 08:15 PM

This is a legitimate IoT penetration testing tool. Static analysis flagged 530 findings as suspicious, but evaluation confirms all are FALSE POSITIVES. The tool explicitly identifies as a pentesting skill and includes authorization requirements. The flagged patterns (password file access, SSH key enumeration, sudoers file access) are standard security enumeration commands used in authorized penetration testing. Risk level is MEDIUM because powerful capabilities require proper user authorization.

9
已掃描檔案
2,284
分析行數
3
發現
claude
審計單位
未發現安全問題

風險因素

⚙️ 外部命令 (1)
🌐 網路存取 (1)
📁 檔案系統存取 (1)

審計版本 4

中風險

Jan 16, 2026, 08:15 PM

This is a legitimate IoT penetration testing tool. Static analysis flagged 530 findings as suspicious, but evaluation confirms all are FALSE POSITIVES. The tool explicitly identifies as a pentesting skill and includes authorization requirements. The flagged patterns (password file access, SSH key enumeration, sudoers file access) are standard security enumeration commands used in authorized penetration testing. Risk level is MEDIUM because powerful capabilities require proper user authorization.

9
已掃描檔案
2,284
分析行數
3
發現
claude
審計單位
未發現安全問題

風險因素

⚙️ 外部命令 (1)
🌐 網路存取 (1)
📁 檔案系統存取 (1)

審計版本 3

中風險

Jan 10, 2026, 11:42 AM

This is a legitimate penetration testing tool for IoT device security assessment. The skill enables telnet connections to remote devices for enumeration and security testing. All network connections are to user-specified targets. The tool includes session logging for transparency. Use requires explicit authorization.

8
已掃描檔案
2,015
分析行數
4
發現
claude
審計單位
未發現安全問題

風險因素

審計版本 2

中風險

Jan 10, 2026, 11:42 AM

This is a legitimate penetration testing tool for IoT device security assessment. The skill enables telnet connections to remote devices for enumeration and security testing. All network connections are to user-specified targets. The tool includes session logging for transparency. Use requires explicit authorization.

8
已掃描檔案
2,015
分析行數
4
發現
claude
審計單位
未發現安全問題

風險因素

審計版本 1

中風險

Jan 10, 2026, 11:42 AM

This is a legitimate penetration testing tool for IoT device security assessment. The skill enables telnet connections to remote devices for enumeration and security testing. All network connections are to user-specified targets. The tool includes session logging for transparency. Use requires explicit authorization.

8
已掃描檔案
2,015
分析行數
4
發現
claude
審計單位
未發現安全問題

風險因素