Does this skill work with IoT devices?

Yes, it is highly effective for TizenRT and ARTIK IoT device provisioning and security auditing, focusing on resource access and kernel-level mandatory access control.

What security models does it analyze?

The skill focuses on Tizen's core security components: SMACK (Simplified Mandatory Access Control Kernel), Cynara (Privilege Control Service), and the Tizen Manifest system.

What is the primary purpose of the Tizen Sandbox Escape Detector?

It is designed to test and validate the security of Tizen application sandboxes, specifically looking for ways a process might bypass isolation or gain unauthorized privileges.

Which application types are supported?

It supports the full range of Tizen development environments, including Web, Native (C/C++), and .NET applications.

How does it help with SMACK policies?

It audits the labels and resource access rules within the SMACK framework to ensure that inter-app communication is restricted and sensitive kernel resources are protected.

Tizen Sandbox Escape Detector

Name: Tizen Sandbox Escape Detector
Author: plurigrid

byplurigrid

•

보안 및 테스팅

Tests Tizen application sandboxes for privilege escalation and escape vulnerabilities to ensure robust process isolation.

The Tizen Sandbox Escape Detector is a specialized security skill designed to audit and harden the isolation layer of Tizen-based applications and IoT devices. It automates the detection of privilege escalation vulnerabilities by validating SMACK (Simplified Mandatory Access Control Kernel) policies, Cynara access controls, and manifest privilege declarations. Whether you are developing for TizenRT, Samsung ARTIK, or mobile devices, this skill provides critical insights into process isolation, key management, and resource access specifications to prevent unauthorized sandbox escapes.

주요 기능

01Analyzes Tizen application manifests for excessive privilege declarations

02Supports security auditing for web, native, and .NET Tizen applications

03Audits Cynara policy-based permission checking and external agents

04Validates KeyManager secure storage and resource access specifications

052 GitHub stars

06Identifies vulnerabilities in Tizen SMACK kernel-level process isolation

사용 사례

01Verifying SMACK and Cynara policy compliance during CI/CD pipelines

02Hardening the security configuration of TizenRT and ARTIK IoT devices

03Security auditing and penetration testing for Tizen-based IoT and mobile apps

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add plurigrid/asi sandbox-escape-detector

For use in Claude.ai and ChatGPT

Download Skill