← Back to Skills Marketplace
127
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install toolweb-active-directory-hardening
Description
Enterprise-grade API for generating optimized Active Directory security configuration files with hardening best practices.
Usage Guidance
This package appears to be an API specification for generating Active Directory hardening configurations, not an implemented client or hosted service. Before installing or using it: 1) Confirm the provider and hosting origin (who operates the API and where it's hosted); the registry metadata lists 'unknown' source and no homepage. 2) Ask for the API base URL and authentication mechanism — a paid API should require credentials (API key/token) which are not declared here. 3) Treat any generated deploymentScript (PowerShell) as potentially destructive — review and test in a safe lab before running on production. 4) If you expect the skill to call an external service, require explicit documentation of where requests are sent and how credentials are handled; absence of that is a practical and security risk. If these questions are not answered, do not trust the skill to produce or execute configuration changes in your environment.
Capability Analysis
Type: OpenClaw Skill
Name: toolweb-active-directory-hardening
Version: 1.0.0
The skill is a security utility designed to generate Active Directory hardening configurations and PowerShell deployment scripts based on industry standards like CISSP. The documentation (SKILL.md) and API specification (openapi.json) describe a legitimate service that interfaces with an external API (api.mkkpro.com) to provide security recommendations. There is no evidence of malicious intent, data exfiltration, or prompt injection; the tool functions as a configuration generator for system administrators.
Capability Assessment
Purpose & Capability
The skill claims to be an 'enterprise-grade API' that generates Active Directory hardening configurations and the SKILL.md/openapi.json describe endpoints and request/response shapes that align with that purpose. However, the package includes no server base URL, no authentication details, and no install/runtime that actually implements a client or server — so the 'API' is only a spec/documentation. The existence of pricing tiers for an external service but no declared credentials is inconsistent with a hosted paid API.
Instruction Scope
The SKILL.md is an API specification and sample requests/responses; it does not instruct the agent to read local files, collect unrelated system data, or exfiltrate secrets. That said, the responses include deployable PowerShell scripts (deploymentScript) which are powerful and can make system changes if executed — the skill provides no safety guidance or sandboxing instructions. Also the SKILL.md does not provide a server 'servers' entry or base URL, so following the endpoints as-is is incomplete.
Install Mechanism
This is an instruction-only skill with no install spec and no code files to execute. That minimizes on-disk installation risk. There are no downloads, extracted archives, or third-party packages declared.
Credentials
The skill declares no required environment variables or credentials. For a documented paid API with pricing tiers, you'd normally expect at least an API key or token to be required; the absence of any auth declaration is inconsistent and could mean the spec is incomplete or the skill expects the agent to produce configs locally. No credentials are requested, so there's no obvious secret-exfiltration vector in the skill metadata, but lack of auth details is a red flag for practical usage.
Persistence & Privilege
The skill does not request always:true and makes no claims about modifying other skills or system-wide agent settings. It is user-invocable and allows autonomous invocation (default), which is normal for skills.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install toolweb-active-directory-hardening - After installation, invoke the skill by name or use
/toolweb-active-directory-hardening - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: Enterprise-grade API for Active Directory hardening
- Automates generation of optimized AD security configuration files based on best practices and CISSP standards.
- Provides endpoints to generate configurations, list available hardening options, and perform health checks.
- Supports flexible hardening options including password policies, account lockout, Kerberos, and group policy.
- Returns deployable configuration files, PowerShell deployment scripts, and detailed audit logs.
- Includes multiple pricing tiers with free and paid usage plans.
Metadata
Frequently Asked Questions
What is Active Directory Hardening?
Enterprise-grade API for generating optimized Active Directory security configuration files with hardening best practices. It is an AI Agent Skill for Claude Code / OpenClaw, with 127 downloads so far.
How do I install Active Directory Hardening?
Run "/install toolweb-active-directory-hardening" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Active Directory Hardening free?
Yes, Active Directory Hardening is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Active Directory Hardening support?
Active Directory Hardening is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Active Directory Hardening?
It is built and maintained by ToolWeb (@krishnakumarmahadevan-cmd); the current version is v1.0.0.
More Skills