Active Directory Hardening

Security checks across malware telemetry and agentic risk

Overview

This is a documented API wrapper for generating Active Directory hardening configurations, with no local code or automatic execution behavior in the submitted artifacts.

Safe to install as an API/documentation wrapper, but treat any generated Active Directory configuration or PowerShell script as untrusted until reviewed by a qualified administrator. Test in a non-production domain, use change control, plan rollback and backups, and avoid sending secrets or unnecessary real user identifiers to the provider.

SkillSpector

By NVIDIA

Vulnerability Patterns

Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill advertises generation of deployment-ready Active Directory hardening configurations and scripts, but it does not warn users that applying them can directly modify authentication, authorization, Kerberos, password, and GPO settings in a production domain. In the context of AD, incorrect or unreviewed changes can cause domain-wide lockouts, service outages, broken legacy compatibility, or weakened security if generated settings are wrong or incomplete.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal