Now in early access, book a 30-minute demo →
Skill scan report

abusing-shadow-credentials-for-privesc

View on GitHub
24 Low Automated analysis flagged 2 potential risk patterns.

What this skill does

Abusing Shadow Credentials for Privilege Escalation in Active Directory

github/mukul975 - Security Risk - 25.7k stars

ThreatsSecurity Risk

Threat analysis

Security Risk2 findings

Skill info

Namemukul975/abusing-shadow-credentials-for-privesc
Registrygithub
Version673da1f
PURLpkg:github/mukul975/Anthropic-Cybersecurity-Skills@673da1f?skill=abusing-shadow-credentials-for-privesc
Stars25.7k

Assessments (2)

Security Risk2 findings HIGH
HIGH

Security Risk via local-llm-review

scripts/agent.py

The script is designed to take over Active Directory user and computer accounts by writing alternate certificate keys to msDS-KeyCredentialLink (Shadow Credentials) and authenticate via PKINIT. This i
HIGH

Security Risk via local-llm-review

SKILL.md

The skill's description and overview detail a technique that allows full takeover of targeted accounts in Active Directory. This is a legitimate red-team technique but poses a significant security ris

Badge

Add the Anomity scan badge for abusing-shadow-credentials-for-privesc to your README.

Anomity Skill Check badge

Markdown
[![Anomity Skill Check](https://anomity.ai/skills/badge.svg)](https://anomity.ai/skills/github/mukul975/abusing-shadow-credentials-for-privesc/)
HTML
<a href="https://anomity.ai/skills/github/mukul975/abusing-shadow-credentials-for-privesc/"><img src="https://anomity.ai/skills/badge.svg" alt="Anomity Skill Check"></a>
Image URL
https://anomity.ai/skills/badge.svg

How Anomity governs this at runtime

Scan-time vetting tells you what a skill says it will do. Anomity's Endpoint Sensor sees what agents actually do: it discovers skills alongside every other AI artifact on the endpoint, and runtime governance can allow, deny, or log the tool calls a skill triggers. Policy violations route to your SIEM, Slack, email, or Jira, backed by a queryable 90-day audit trail.

Book a 30-minute demo to see your own skill inventory.

Methodology and disputes

Every skill is assessed by the Anomity Skill Intelligence engine against its public source; findings indicate risk patterns, not confirmed exploitation. Maintainer of abusing-shadow-credentials-for-privesc? Report an issue or request a rescan.

Ask AI about Anomity
ChatGPT Claude Perplexity Google AI Grok