abusing-dpapi-for-credential-access
What this skill does
Teaching/educational tool for red teaming and cybersecurity training, specifically for demonstrating how DPAPI-protected secrets can be extracted for authorized penetration testing and red-team engage
github/mukul975 - general - 25.7k stars
Threat analysis
Skill info
pkg:github/mukul975/Anthropic-Cybersecurity-Skills@673da1f?skill=abusing-dpapi-for-credential-accessAssessments
No risk patterns detected in this scan. A clean automated scan is a good signal, not a guarantee.
Badge
Add the Anomity scan badge for abusing-dpapi-for-credential-access to your README.
How Anomity governs this at runtime
Scan-time vetting tells you what a skill says it will do. Anomity's Endpoint Sensor sees what agents actually do: it discovers skills alongside every other AI artifact on the endpoint, and runtime governance can allow, deny, or log the tool calls a skill triggers. Policy violations route to your SIEM, Slack, email, or Jira, backed by a queryable 90-day audit trail.
Book a 30-minute demo to see your own skill inventory.
Methodology and disputes
Every skill is assessed by the Anomity Skill Intelligence engine against its public source; findings indicate risk patterns, not confirmed exploitation. Maintainer of abusing-dpapi-for-credential-access? Report an issue or request a rescan.




