net-vuln-scan
网络安全漏洞检测工具。用于检测本地网络和主机的常见安全漏洞,包括: (1) 开放端口检测与风险评估 (2) 弱密码和默认凭证检测 (3) SSL/TLS 证书问题 (4) 常见服务漏洞检测 (5) 网络配置安全检查 (6) 敏感端口暴露检测。 适用于:安全审计、渗透测试前自查、系统加固、服务器上线检查。 注意:仅用于授权的安全检测,禁止未授权扫描他人系统。
Install via CLI (Recommended)
clawhub install openclaw/skills/skills/aritz-china/net-vuln-scanWhat This Skill Does
The net-vuln-scan skill is a robust network and security auditing agent designed for OpenClaw. It serves as a comprehensive suite for identifying security posture within local networks and on remote host machines. By automating the discovery of vulnerabilities, it empowers system administrators and security professionals to conduct proactive security assessments. The tool excels at detecting open ports with associated risk profiles, identifying weak credentials, checking SSL/TLS configuration health, and auditing network settings. With the 2026 March update, it further integrates sophisticated CVE scanning capabilities and platform-specific audits, covering everything from databases and web services to cloud configurations and container environments.
Installation
To add this security toolkit to your OpenClaw environment, execute the following installation command in your terminal:
clawhub install openclaw/skills/skills/aritz-china/net-vuln-scan
Ensure that your environment has the necessary administrative privileges, as scanning operations often require system-level access to gather accurate network configuration data.
Use Cases
This skill is ideal for several critical IT scenarios:
- Security Auditing: Regularly assessing infrastructure to comply with internal security policies.
- Pre-deployment Checks: Ensuring servers are hardened before going live by verifying port configurations and SSL/TLS health.
- Penetration Testing Assistance: Rapidly mapping attack surfaces and identifying misconfigurations during authorized engagements.
- Vulnerability Management: Keeping track of emerging high-risk CVEs and verifying if your systems are patched against them.
- Configuration Drift Detection: Identifying accidental exposure of sensitive services like Redis or database ports that should not be reachable.
Example Prompts
- "Perform a full security audit on 192.168.1.50 and generate a comprehensive vulnerability report."
- "Check if the web server at example.com has any issues with its SSL/TLS certificate or weak cipher suites."
- "Scan for the latest high-risk CVEs specifically related to our Office software stack using the CVE check tool."
Tips & Limitations
- Authorization First: This tool is for authorized use only. Scanning unauthorized targets is strictly prohibited and unethical.
- System Impact: While the scanner is designed for efficiency, limit scanning frequency to avoid network congestion. The default throttle is 10 ports per second.
- Permissions: Always run scans with appropriate privileges to ensure all checks (especially sensitive port and config checks) execute correctly.
- Interpretation: Always cross-reference high-risk alerts with your internal security policies before taking automated remediation actions. Use the provided reporting tool to keep a clean audit trail.
Metadata
Not sure this is the right skill?
Describe what you want to build — we'll match you to the best skill from 16,000+ options.
Find the right skillPaste this into your clawhub.json to enable this plugin.
{
"plugins": {
"official-aritz-china-net-vuln-scan": {
"enabled": true,
"auto_update": true
}
}
}Tags(AI)
Flags: network-access, code-execution