← Back to Skills Marketplace
Security Passwords
by
PandaAI-1337
· GitHub ↗
· v1.0.0
· MIT-0
197
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install sec-passwords
Description
Provides curated top password lists for authorized security testing, including common, leaked, and worst passwords under 10MB.
Usage Guidance
This skill appears coherent and low-risk in structure, but the included password lists contain leaked, offensive, and highly sensitive entries — they can be abused. Only use these lists for authorized testing (with written permission), bug bounties in-scope, CTFs, or education. Keep the files and any results on trusted systems, do not upload them to third-party services without consent, and verify you have legal authorization before performing any credential-stuffing or brute-force testing. Review the MIT license and attribution if you redistribute the lists.
Capability Analysis
Type: OpenClaw Skill
Name: sec-passwords
Version: 1.0.0
The skill bundle is a curated collection of password wordlists sourced from the well-known SecLists repository, intended for authorized security testing and research. The documentation in SKILL.md clearly outlines ethical usage guidelines and provides a benign Python example for reading the local text files. There are no indicators of malicious code, data exfiltration, or prompt injection attempts within the bundle.
Capability Assessment
Purpose & Capability
Name/description (curated password lists for authorized testing) matches the included files and example usage. The bundled lists and README links to SecLists/MIT are appropriate for the stated purpose.
Instruction Scope
SKILL.md only instructs the agent to read files packaged in references/Passwords and to use them for authorized testing; it does not request unrelated files, system paths, environment variables, or network exfiltration.
Install Mechanism
No install specification or external downloads are present — this is instruction-only with static text assets included in the bundle, which minimizes install-time risk.
Credentials
The skill requires no environment variables, no credentials, and no config paths. All required data is local to the skill and proportionate to the password-list purpose.
Persistence & Privilege
always is false and the skill is user-invocable. It does not request persistent elevated privileges or modify other skills or system-wide agent settings.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install sec-passwords - After installation, invoke the skill by name or use
/sec-passwords - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of the curated SecLists Passwords collection.
- Includes essential password lists: common, breached, and worst passwords under 10MB.
- Suitable for authorized security testing, password policy validation, and educational uses.
- Key files: 500-worst-passwords.txt, 10k-most-common.txt, 100k-most-used-passwords-NCSC.txt, darkweb2017_top-10000.txt, probable-v2_top-12000.txt.
- Emphasizes responsible, legal, and ethical usage only.
Metadata
Frequently Asked Questions
What is Security Passwords?
Provides curated top password lists for authorized security testing, including common, leaked, and worst passwords under 10MB. It is an AI Agent Skill for Claude Code / OpenClaw, with 197 downloads so far.
How do I install Security Passwords?
Run "/install sec-passwords" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Security Passwords free?
Yes, Security Passwords is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Security Passwords support?
Security Passwords is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Security Passwords?
It is built and maintained by PandaAI-1337 (@pandaai-1337); the current version is v1.0.0.
More Skills