40Medium
The skill executes obfuscated hex-encoded payloads and performs unauthorized system operations without declaring necessary tools, posing a significant risk of arbitrary code execution and system compromise.
Skill Info
Namemaux339-cpu/pombocyber-skills-cybersec/analyzing-bootkit-and-rootkit-samples
Registrygithub
Version0f429d0f96ee
PURLpkg:github/maux339-cpu/pombocyber-skills-cybersec@0f429d0f96ee?skill=analyzing-bootkit-and-rootkit-samples
Source
Install
This skill has findings worth reviewing before installing.
GitHub
Skills.shDocs
npx skills add https://github.com/maux339-cpu/pombocyber-skills-cybersecAssessments (2)
AI Agent Traps ↗Hex-encoded payload detectedmediumobfuscationAML.T0068AML.T0015LLM01:2025
Hex-encoded payload detected
100% confidenceline 105
\xFA\x33\xC0\x8E\xD0\xBC\x00\x7C\x8B\xF4\x50\x07
Badge
Markdown
[](https://mondoo.com/ai-agent-security/skills/github/maux339-cpu/pombocyber-skills-cybersec/analyzing-bootkit-and-rootkit-samples)HTML
<a href="https://mondoo.com/ai-agent-security/skills/github/maux339-cpu/pombocyber-skills-cybersec/analyzing-bootkit-and-rootkit-samples"><img src="https://mondoo.com/ai-agent-security/api/badge/github/maux339-cpu/pombocyber-skills-cybersec/analyzing-bootkit-and-rootkit-samples.svg" alt="Mondoo Skill Check" /></a>Image URL
https://mondoo.com/ai-agent-security/api/badge/github/maux339-cpu/pombocyber-skills-cybersec/analyzing-bootkit-and-rootkit-samples.svgSecure your AI agents
Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.
- Continuous scanning of skills across all registries
- Policy enforcement before skills reach your agents
- Integration with your existing security workflow