All OpenClaw Skills
222 skills found in security
Aegis Security
Blockchain security API for AI agents. Scan tokens, simulate transactions, check addresses for threats.
Senior Secops
Comprehensive SecOps skill for application security, vulnerability management, compliance, and secure development practices. Includes security scanning, vulnerability assessment, compliance checking, and security automation. Use when implementing security controls, conducting security audits, responding to vulnerabilities, or ensuring compliance requirements.
ClawGuard
Install and configure the ClawGuard security plugin - an LLM-as-a-Judge guardrail that detects and blocks risky tool calls
Private Connect
Access private services by name, from anywhere. No VPN or SSH tunnels.
ClawdZap
Encrypted P2P Messaging for Agents (Nostr-based)
NPM Audit Fixer
Analyze npm audit output with AI and get actionable fix suggestions. Use when dealing with security vulnerabilities.
Openclaw Bastion
Prompt injection defense for agent workspaces. Scan files for injection attempts, analyze content boundaries, detect hidden instructions, and maintain command allowlists. Free alert layer — upgrade to openclaw-bastion-pro for active blocking, sanitization, and runtime enforcement.
Moltchan
Image board for AI agents (4chan-style). Same auth as Moltbook; boards, threads, image posts, replies, upvotes.
NanoBazaar
Use the NanoBazaar Relay to create offers (sell services), create jobs (buy services), attach charges, search offers, and exchange encrypted payloads.
Moltpad
Connects to Moltpad.space to read, write, and publish literary content. Handles authentication, content discovery, and publishing workflows.
AuditBot
Ultimate security scanner for smart contracts. Instant vulnerability detection, rug-pull analysis, honeypot checker, and comprehensive risk scoring.
ClawDefender - OpenClaw Security - Prompt injection, rogue skills etc
Security scanner and input sanitizer for AI agents. Detects prompt injection, command injection, SSRF, credential exfiltration, and path traversal attacks. Use when (1) installing new skills from ClawHub, (2) processing external input like emails, calendar events, Trello cards, or API responses, (3) validating URLs before fetching, (4) running security audits on your workspace. Protects agents from malicious content in untrusted data sources.
Openclaw Sentinel Pro
Full supply chain security suite: scan skills for obfuscation and malware patterns, auto-quarantine risky skills, generate SBOMs, continuous monitoring, and community threat feeds. Everything in openclaw-sentinel (free) plus automated countermeasures.
OpenClaw Skill Auditor
Security scanner for ClawHub skills. Detects malicious code, obfuscated payloads, and social engineering before installation. Three-layer analysis: pattern matching, deobfuscation, and LLM intent analysis.
VirusTotal
Scan files and URLs using VirusTotal API via curl or Python utilities. Check hashes, upload files, and manage comments.
Aura Security Scanner
Scan AI agent skills for malware, credential theft, prompt injection, and dangerous permissions before installing them
Skill Auditor
Security scanner for OpenClaw skills. Just say 'scan' before any skill link or name to get a security report. Audits for vulnerabilities, prompt injection, data exfiltration, obfuscation, and other threats — with smart context-aware analysis that understands a skill's stated purpose.
little-snitch
Control Little Snitch firewall on macOS. View logs, manage profiles and rule groups, monitor network traffic. Use when the user wants to check firewall activity, enable/disable profiles or blocklists, or troubleshoot network connections.
localStorage PoC
Security research - localStorage access via SVG XSS
ecap Security Auditor
Security audit framework for AI agent skills, MCP servers, and packages. Your LLM does the analysis — we provide structure, prompts, and a shared trust database.
WHOOP Central
WHOOP Central - OAuth + scripts to fetch WHOOP data (sleep, recovery, strain, workouts). Use when user asks about their sleep, recovery score, HRV, strain, or workout data.
Prism Scanner
Instant rug pull detection for any token. Holder concentration, liquidity locks, contract risks. DYOR before you ape. Works with AI agents.
Security Audit (Sona)
Fail-closed security auditing for OpenClaw/ClawHub skills & repos: trufflehog secrets scanning, semgrep SAST, prompt-injection/persistence signals, and supply-chain hygiene checks before enabling or installing.
Openclaw Marshal
Compliance and policy enforcement for agent workspaces. Define security policies, audit compliance, check command restrictions, and generate audit-ready reports. Free alert layer — upgrade to openclaw-marshal-pro for active enforcement, blocking, and automated remediation.