ClawHub

Remote Desktop

Security checks across malware telemetry and agentic risk

Overview

This skill is documentation-only and aligned with remote desktop help, but several copy-paste troubleshooting examples can weaken remote-access security if followed casually.

Review commands before use. Prefer SSH tunnels or VPNs, avoid exposing RDP/VNC directly, do not put real passwords in command lines, avoid certificate-bypass flags except as a tightly controlled temporary diagnostic, and do not use the anonymous PulseAudio example without replacing it with authenticated or tunneled access.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (7)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The template explicitly encourages storing sensitive remote-access metadata such as host identifiers, usernames, ports, and tunnel commands in persistent local memory files, but provides no warning, minimization guidance, or handling requirements. In a remote desktop skill, this is more dangerous because these details can reveal internal network structure and facilitate lateral movement or unauthorized access if the memory store is exposed.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The RDP example places the password directly on the command line via `/p:PASS`, which can expose credentials through shell history, process listings, terminal logging, or shared session artifacts. In a remote-desktop skill, users are likely to copy-paste commands verbatim against real systems, so this guidance materially increases the chance of credential disclosure.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The example includes `/cert:ignore`, which disables certificate validation and makes RDP sessions vulnerable to man-in-the-middle interception or impersonation by an attacker on the network path. Although it says 'use carefully,' that warning is too weak for a copy-pasteable command in a security-sensitive remote access context.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The troubleshooting guidance includes commands that change firewall rules and start services on the remote host, but it does so without warning that these actions modify security posture and may expose remote desktop services to the network. In a remote desktop skill, users are likely to apply commands directly, so omitted cautions increase the chance of unintentionally opening access or disrupting managed configurations.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The recommendation to use xfreerdp with /cert:ignore instructs users to bypass certificate validation, which defeats a key protection against man-in-the-middle attacks. In a remote access context, this is especially dangerous because it trains users to suppress identity checks while sending credentials to a potentially spoofed host.

Missing User Warnings

Low
Confidence
81% confidence
Finding
Editing sshd_config and restarting sshd changes remote access behavior and can lock out users or interrupt active sessions if done incorrectly. While the commands are standard administration steps, the lack of warning or rollback guidance makes the advice risky in a troubleshooting document aimed at quick fixes.

Missing User Warnings

High
Confidence
99% confidence
Finding
The PulseAudio example enables module-native-protocol-tcp with auth-anonymous=1, which exposes an unauthenticated audio service over the network. That can permit unauthorized remote connections to audio resources and broadens attack surface, especially if the host is reachable beyond a trusted local environment.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal