ToDesk Alternatives

Security checks across malware telemetry and agentic risk

Overview

This is a Chinese-language reference guide recommending open-source remote desktop alternatives, with no hidden automation or credential access.

Install only if you can understand the Chinese instructions or can translate them reliably. Before running any linked downloads or the Docker example, verify the upstream projects, prefer pinned versions over :latest, and secure remote access with strong authentication, updates, firewall rules, or a VPN.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 94% confidence
Finding: The skill metadata, description, and trigger phrases are presented only in Chinese, which can cause users who do not read Chinese to invoke or install the skill without understanding its behavior. This is primarily a safety and transparency issue rather than code execution risk, but it can still undermine informed consent and proper use.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal