審計紀錄
coordinator - 6 審計
審計版本 6
最新 高風險Jun 28, 2026, 09:31 PM
Static command-execution detections are mostly Markdown code fence false positives, not Ruby backtick execution. The surrounding content confirms high-risk intent: autonomous network reconnaissance, exploitation, credential attacks, privilege escalation, and persistence rules that discourage stopping or asking for help.
高風險問題 (4)
中風險問題 (2)
低風險問題 (2)
風險因素
⚙️ 外部命令 (50)
🌐 網路存取 (3)
📁 檔案系統存取 (3)
偵測到的模式
審計版本 5
中風險Jan 16, 2026, 09:47 PM
This skill is a strategic coordinator for authorized penetration testing in controlled environments (CTF, training). Static findings show documentation of attack techniques in AD_ATTACK_SUPPLEMENT.md and SKILL.md, but these are educational examples, not executable code. The skill delegates all execution to subagents and explicitly restricts usage to authorized environments like HackTheBox and VulnHub.
中風險問題 (1)
審計版本 4
中風險Jan 16, 2026, 09:47 PM
This skill is a strategic coordinator for authorized penetration testing in controlled environments (CTF, training). Static findings show documentation of attack techniques in AD_ATTACK_SUPPLEMENT.md and SKILL.md, but these are educational examples, not executable code. The skill delegates all execution to subagents and explicitly restricts usage to authorized environments like HackTheBox and VulnHub.
中風險問題 (1)
審計版本 3
中風險Jan 10, 2026, 12:06 PM
This skill contains penetration testing methodologies for educational use in controlled environments. While it documents attack techniques, it's designed for legitimate security research and training purposes. The skill delegates actual execution to other agents and maintains ethical boundaries.
中風險問題 (1)
審計版本 2
中風險Jan 10, 2026, 12:06 PM
This skill contains penetration testing methodologies for educational use in controlled environments. While it documents attack techniques, it's designed for legitimate security research and training purposes. The skill delegates actual execution to other agents and maintains ethical boundaries.
中風險問題 (1)
審計版本 1
中風險Jan 10, 2026, 12:06 PM
This skill contains penetration testing methodologies for educational use in controlled environments. While it documents attack techniques, it's designed for legitimate security research and training purposes. The skill delegates actual execution to other agents and maintains ethical boundaries.