← Back to Skills Marketplace
81
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install nerua1-god-mode
Description
Provides advanced obfuscation, injection, multi-model voting, and roleplay techniques to bypass AI filters and elicit unrestricted responses safely.
Usage Guidance
This package is explicitly designed to bypass AI safety filters. That makes it coherent with its description — but also high-risk. Before installing or enabling it, consider the following:
- Intent & policy: Using these techniques may violate terms of service and could produce illegal or harmful outputs; it can get you or your organization blocked or sanctioned. Only use for authorized security research in controlled environments.
- Code audit: Review all scripts (probe*, watcher, network calls) for any remote endpoints or telemetry. The README claims local-only (127.0.0.1) but you should verify there are no calls to remote hosts or hidden exfiltration channels.
- Avoid persistence unless necessary: Do not run install/launchagent_install.sh on shared or production machines. If you need background probing, run probe_watcher.py manually in a sandboxed environment first and inspect logs.
- Limit exposure: Run in an isolated VM or air-gapped environment, with models you control. Do not run on multi-user machines or machines with sensitive credentials.
- Legal/ethical risk: The tool includes explicit harmful prompt examples (reverse shells, ransomware, phishing templates). Even if intended for research, those capabilities create serious legal and ethical responsibilities.
- What would change this assessment: provenance (who maintains this repo), attestations that it never calls remote networks, removal or opt-in gating of automatic persistence, a clear scope-limited build that disallows certain technique categories, or institutional review/approval for research use.
If you are not an experienced security researcher with an isolated testing environment and explicit authorization, do not install or enable this skill.
Capability Analysis
Type: OpenClaw Skill
Name: nerua1-god-mode
Version: 1.1.2
This bundle is a comprehensive toolkit designed to bypass LLM safety filters (jailbreaking) using techniques like unicode obfuscation, token smuggling, and prefill injection. It includes high-risk behaviors such as automated model probing (scripts/probe.py) and the installation of a macOS LaunchAgent for persistence (install/launchagent_install.sh) to run a background model watcher (scripts/probe_watcher.py). While the stated intent is security research and the network activity is limited to localhost (127.0.0.1:1234), the combination of automated security circumvention and persistence mechanisms makes this bundle highly risky.
Capability Tags
Capability Assessment
Purpose & Capability
The name/description (bypass/obfuscation) align with the included scripts (encode, prefill, roleplay, probe, smuggling, abliterate). The required environment/credentials are minimal (none), which is consistent. Note: the presence of a macOS LaunchAgent installer and an automatic probe/watcher implies the skill can persistently monitor models and auto-apply bypasses — capability matches purpose but increases risk and scope beyond a simple prompt-tool.
Instruction Scope
SKILL.md and the scripts explicitly instruct the agent to inject system prompts, prefills, obfuscate trigger words, run multi-model voting, and automatically probe models with 'borderline' prompts (including medium/hard-level harmful examples). The instructions direct automatic wrapping of prompts so the model 'never refuses' and include explicit examples of exploit/attack prompts (reverse shells, buffer overflows, ransomware encryption flows, phishing templates). This is direct and targeted scope creep from innocuous 'formatting' to deliberate safety-filter circumvention and production of possibly harmful content.
Install Mechanism
Registry shows no formal install spec (instruction-only), but the package contains an install/launchagent_install.sh that writes a LaunchAgent plist and loads it (macOS persistent background process). Other install suggestions (git clone, npx) are standard, but the LaunchAgent step creates persistent autorun behavior and KeepAlive — a higher-risk install mechanism not visible in the registry metadata.
Credentials
The skill requests no environment variables or external credentials (proportionate). It does, however, read/write local files (e.g., scripts/model_profiles.json) and is designed to call local LM Studio endpoints (README claims 127.0.0.1:1234). No external endpoints are declared in the registry, which is plausible, but the codebase and docs should be audited to confirm there are truly no remote network calls or telemetry. Lack of declared credentials is expected for a local-only tool, but persistence + local network calls together increase the attack surface.
Persistence & Privilege
The skill is not always:true in metadata, but includes an optional LaunchAgent installer that makes it automatically run on login and KeepAlive. SKILL.md also describes automatic probing when new models appear and auto-application of techniques. Persistent background processes that auto-probe and auto-wrap prompts significantly increase blast radius (autonomous application of filter-bypass techniques).
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install nerua1-god-mode - After installation, invoke the skill by name or use
/nerua1-god-mode - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.2
Add explanation for VirusTotal false positive (base64 + localhost HTTP = expected)
v1.1.1
Remove subprocess/launchctl pattern that triggered VirusTotal scanner
v1.1.0
### God Mode Skill 1.1.0
- Added detailed SKILL.md with full documentation of all bypass and obfuscation techniques, usage instructions, and safety guidelines.
- Expanded explanation and reference for Parseltongue (33 obfuscation methods), Prefill Injection (27 templates), Tastemaker, Ultraplinian, Roleplay Patterns, and Token Smuggling.
- Introduced step-by-step guidance for integration with OpenClaw and new auto-probe mechanism for model susceptibility detection.
- Included sample code snippets for both basic and advanced usage.
- Provided best practices, examples, and strong ethical usage warnings.
Metadata
Frequently Asked Questions
What is God Mode?
Provides advanced obfuscation, injection, multi-model voting, and roleplay techniques to bypass AI filters and elicit unrestricted responses safely. It is an AI Agent Skill for Claude Code / OpenClaw, with 81 downloads so far.
How do I install God Mode?
Run "/install nerua1-god-mode" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is God Mode free?
Yes, God Mode is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does God Mode support?
God Mode is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created God Mode?
It is built and maintained by nerua1 (@nerua1); the current version is v1.1.2.
More Skills