Network Scan

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward nmap-based network scanner, but users must only run it on systems they are authorized to test.

Install this only if you need active network scanning. Scan only hosts and networks you own or are explicitly authorized to assess, keep targets and port ranges narrow, use host limits and timeouts, and expect scans to trigger security monitoring or affect fragile services.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill enables active network scanning across IPs, ranges, and CIDR blocks but does not warn users that scanning can disrupt services, trigger security monitoring, or violate policy or law without authorization. In this context, the omission increases the chance of misuse because the skill is explicitly designed to probe networks and even offers faster/aggressive scan options.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: This skill performs active outbound network scanning against user-supplied targets using nmap, but it provides no built-in warning, authorization check, or disclosure that it will probe external hosts. In an agent setting, this can enable unauthorized reconnaissance or surprise network activity from the host environment, creating legal, policy, and abuse risk even if the code's apparent purpose is legitimate administration.

VirusTotal

55/55 vendors flagged this skill as clean.

View on VirusTotal