Fisi

Security checks across malware telemetry and agentic risk

Overview

This is a German IT training skill with powerful admin command examples, but the artifacts are documentation-only and purpose-aligned.

Suitable as a study aid. Before running any command from the examples, use a VM or lab environment and review commands that delete files, flush firewall rules, prune Docker resources, change services, or create accounts; add backups or rollback steps for real systems.

SkillSpector

By NVIDIA

Vulnerability Patterns

Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (3)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The iptables example flushes existing firewall rules and sets restrictive default policies without an explicit warning about lockout or service disruption. If copied blindly, a user could lose remote access or interrupt production traffic, especially over SSH or on multi-service hosts.

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The backup script includes automatic deletion of old archives with find -delete but does not warn that matching backups will be permanently removed. In an educational skill that may be copied directly, this can cause accidental data loss if the path, pattern, or retention value is wrong.

Tool Parameter Abuse

High

Category: Tool Misuse
Content: # Funktion: Fehlerbehandlung cleanup() { echo "Fehler aufgetreten. Bereinige..." rm -f "${BACKUP_DIR}/tmp_*" exit 1 } trap cleanup ERR
Confidence: 79% confidence
Finding: rm -f "${BACKUP_DIR}/

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal