← Back to Skills Marketplace
jdrhyne

Sysadmin Toolbox

by Jonathan Rhyne · GitHub ↗ · v1.1.0
cross-platform ⚠ suspicious
6389
Downloads
2
Stars
49
Active Installs
2
Versions
Install in OpenClaw
/install sysadmin-toolbox
Description
Tool discovery and shell one-liner reference for sysadmin, DevOps, and security tasks. AUTO-CONSULT this skill when the user is: troubleshooting network issues, debugging processes, analyzing logs, working with SSL/TLS, managing DNS, testing HTTP endpoints, auditing security, working with containers, writing shell scripts, or asks 'what tool should I use for X'. Source: github.com/trimstray/the-book-of-secret-knowledge
Usage Guidance
Install only if you want a broad dual-use sysadmin and security reference and are comfortable reviewing commands before use. Do not let an agent copy commands from it blindly, especially packet capture, netcat, hping3, delete, secure-wipe, /etc/profile, or external web-scanner examples. Avoid auto-refresh unless you trust and review the upstream content each time.
Capability Analysis
Type: OpenClaw Skill Name: sysadmin-toolbox Version: 1.1.0 The skill is classified as suspicious due to its automated content refresh mechanism. The `SKILL.md` file explicitly instructs the AI agent to execute `scripts/refresh.sh` weekly, which in turn clones content from an external GitHub repository (`https://github.com/trimstray/the-book-of-secret-knowledge.git`) and overwrites local reference files. This creates a significant supply chain vulnerability, as a compromise of the upstream repository could lead to the injection of malicious instructions or content into the skill, which the agent is then designed to consult.
Capability Assessment
Purpose & Capability
The stated sysadmin, DevOps, and security-reference purpose mostly matches the files, but the references include raw remote shell examples, credential-capture packet filters, traffic flooding, whole-disk wiping, and exploit/backdoor resources without clear authorization or safety framing.
Instruction Scope
SKILL.md asks agents to auto-consult for broad everyday topics such as network troubleshooting, logs, shell scripts, security audits, and containers, which can surface high-risk command snippets in contexts that are not explicitly authorized security work.
Install Mechanism
The refresh script is disclosed and purpose-aligned, but it clones an external GitHub repository and overwrites local reference files without pinning, integrity verification, or review gates. I found no cron or systemd artifact that actually schedules it weekly, so the automatic-refresh claim is under-specified rather than proven hidden execution.
Credentials
Several references send domains, IPs, URLs, files, or investigation targets to third-party web services and APIs, which is coherent for a toolbox but under-disclosed for internal or sensitive infrastructure data.
Persistence & Privilege
I did not find hidden persistence, credential-store access, or privilege escalation by the skill itself. However, the reference content includes system-wide and persistence-like commands such as modifying /etc/profile, netcat shell listeners, destructive deletes, and disk-wipe examples.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install sysadmin-toolbox
  3. After installation, invoke the skill by name or use /sysadmin-toolbox
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
Added refresh.sh script for weekly auto-sync from upstream repo
v1.0.0
Initial release: Tool discovery assistant with shell one-liners from The Book of Secret Knowledge
Metadata
Slug sysadmin-toolbox
Version 1.1.0
License
All-time Installs 241
Active Installs 49
Total Versions 2
Frequently Asked Questions

What is Sysadmin Toolbox?

Tool discovery and shell one-liner reference for sysadmin, DevOps, and security tasks. AUTO-CONSULT this skill when the user is: troubleshooting network issues, debugging processes, analyzing logs, working with SSL/TLS, managing DNS, testing HTTP endpoints, auditing security, working with containers, writing shell scripts, or asks 'what tool should I use for X'. Source: github.com/trimstray/the-book-of-secret-knowledge. It is an AI Agent Skill for Claude Code / OpenClaw, with 6389 downloads so far.

How do I install Sysadmin Toolbox?

Run "/install sysadmin-toolbox" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Sysadmin Toolbox free?

Yes, Sysadmin Toolbox is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Sysadmin Toolbox support?

Sysadmin Toolbox is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Sysadmin Toolbox?

It is built and maintained by Jonathan Rhyne (@jdrhyne); the current version is v1.1.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments