MITRE ATT&CK Technique Mapper

Security checks across malware telemetry and agentic risk

Overview

This skill is an instruction-only connector for a MITRE ATT&CK mapping API, but users should be careful because it sends security reports or logs to an external provider.

Install or use this only if you trust ToolWeb and are authorized to share the relevant reports or logs. Redact secrets, customer data, internal hostnames, and active investigation details before upload, and use a dedicated revocable API key.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly encourages users to upload incident reports, SIEM exports, threat intelligence, and other potentially sensitive security documents to a third-party external API, but it does not provide any user-facing warning about data transmission, retention, or sensitivity handling. In a security context, these files may contain credentials, internal hostnames, detection logic, customer data, or ongoing investigation details, so the omission creates a real data-exposure risk.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal