Skills
.Work. You
Rest

identify-malicious-repository

Official

Spot fraudulent repos posing as security tools.

Legal & Compliance#github#scam detection#repository analysis#malware#risk scoring#brand impersonation#cyber safety
AuthorAradotso
Version1.0.0
Installs0

System Documentation

What problem does it solve?

It helps you detect fraudulent GitHub repositories that impersonate legitimate security products in order to trick you into downloading malware.

Core Features & Use Cases

  • Repository risk detection: Scores likelihood of malicious intent using signals like piracy/cracking language, suspicious engagement patterns, and brand impersonation.
  • Actionable warnings and guidance: Produces a risk level plus specific red flags and a clear recommendation not to download.
  • Defensive follow-ups: Offers steps for reporting, system scanning, and basic IoC-oriented checks after exposure.

Use case example: You find a newly created “Avast Premium Security” repository with “keygen” style claims and inflated stars but no real engagement; this skill helps you identify it as likely malicious and avoid downloading.

Quick Start

Use the identify-malicious-repository skill to analyze a suspicious GitHub repo and produce a risk level plus concrete red-flag reasons.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: identify-malicious-repository
Download link: https://github.com/Aradotso/security-skills/archive/main.zip#identify-malicious-repository

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.