← Back to Skills Marketplace
solomonneas

Pentest Commands

by Solomon Neas · GitHub ↗ · v1.0.1 · MIT-0
cross-platform ✓ Security Clean
764
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install pentest-commands
Description
Essential penetration testing command reference. Quick lookup for nmap, Metasploit, hydra, john, nikto, gobuster, and other offensive security tools. Covers...
Usage Guidance
This is a coherent reference cheat-sheet for penetration-testing tools (nmap, Metasploit, sqlmap, etc.). It does not request credentials or install anything, but the commands are offensive in nature — only run them in environments where you have explicit authorization. If you plan to enable autonomous invocation for an agent, be cautious: allowing automatic execution of these commands can cause legal and operational harm. Prefer manual invocation, run in isolated test networks (e.g., lab or VM), and keep logs and explicit authorization records before executing any scans or exploits.
Capability Analysis
Type: OpenClaw Skill Name: pentest-commands Version: 1.0.1 The skill bundle is a comprehensive command reference for penetration testing tools such as nmap, Metasploit, sqlmap, and hydra, and is clearly aligned with its stated purpose. It contains no evidence of malicious intent, data exfiltration, or prompt injection, and includes explicit reminders to obtain authorization before performing any security testing (SKILL.md).
Capability Assessment
Purpose & Capability
The name/description match the content: the SKILL.md is a command reference for pentesting tools. No unrelated binaries, env vars, or installs are requested.
Instruction Scope
The instructions provide explicit offensive commands and example payloads (e.g., Metasploit/msfvenom, nmap NSE scripts). They assume an authorized pentest environment (Kali, authorized targets). They do not instruct the agent to read unrelated files, exfiltrate data, or call external endpoints beyond the described tools, but the content enables potentially harmful actions if executed on unauthorized targets.
Install Mechanism
No install spec and no code files — instruction-only skill; nothing is written to disk by an installer and no external download URLs are used.
Credentials
The skill requires no environment variables, credentials, or config paths. The SKILL.md lists prerequisites (Kali, target access, wordlists) that are relevant and proportional.
Persistence & Privilege
always is false and the skill does not request persistent or elevated platform privileges. It does not modify other skills or platform configs.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install pentest-commands
  3. After installation, invoke the skill by name or use /pentest-commands
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
Natural description rewrite
v1.0.0
Initial release of Pentest Commands – a comprehensive command reference for penetration testing tools. - Includes syntax examples for nmap, Metasploit, hydra, John the Ripper, nikto, gobuster, SQLMap, and related tools. - Covers reconnaissance, exploitation, post-exploitation, privilege escalation, and common lateral movement tasks. - Organized by tool with easy copy-paste command templates for fast reference during assessments. - Focuses on practical use during penetration testing engagements, not malware or code analysis.
Metadata
Slug pentest-commands
Version 1.0.1
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 2
Frequently Asked Questions

What is Pentest Commands?

Essential penetration testing command reference. Quick lookup for nmap, Metasploit, hydra, john, nikto, gobuster, and other offensive security tools. Covers... It is an AI Agent Skill for Claude Code / OpenClaw, with 764 downloads so far.

How do I install Pentest Commands?

Run "/install pentest-commands" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Pentest Commands free?

Yes, Pentest Commands is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Pentest Commands support?

Pentest Commands is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Pentest Commands?

It is built and maintained by Solomon Neas (@solomonneas); the current version is v1.0.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments