Skill Trust Index / detail

mukul975/Anthropic-Cybersecurity-Skills/abusing-dpapi-for-credential-access

95
trusted analyzed 2h ago
WHY THIS SCORE

Claims

Extract DPAPI-protected secrets (credentials, browser data, vaults) from Windows systems using tools like SharpDPAPI, Mimikatz, and Impacket. It supports online, offline (password/hash), and domain-wide (backup key) decryption paths.

Actual behavior

The skill manifest describes a standard, well-documented red-teaming workflow for credential access. It references established, reputable tools (GhostPack, Gentilkiwi, Impacket) and standard Windows directories. The workflow involves running specific commands (`triage`, `masterkeys`) to decrypt data in place or output results. There are no scripts provided in the snippet that execute arbitrary code or send data to external endpoints. The legal notice and MITRE mapping add context without altering the core function.

Findings

No non-informational findings.

Attestation

signer 0xB62e1c338a83D3a6621f9127eEa5B000caCfCd01
digest 0x858a239c8cc6c0bf09c14ce1a9b01250fbfe85df30f0b473e92f7eeb8782af3d
verify: GET /skill/verify?digest=…&signature=… · scheme eip191-sha256

← Back to the index