← Back to Skills Marketplace
Cybersecurity Audit & Hardening
by
ai-gaoqian
· GitHub ↗
· v1.0.0
· MIT-0
18
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install cybersecurity-audit
Description
企业级网络安全审计与加固技能。覆盖OWASP Top 10漏洞扫描、CIS基准合规检查、TLS/SSL证书管理、端口扫描与渗透测试辅助、GDPR/等保2.0合规评估、勒索软件防护策略生成。内置CVE数据库同步,支持自动化安全报告输出。
README (SKILL.md)
Cybersecurity Audit & Hardening
Enterprise-grade security auditing and hardening skill. Covers vulnerability scanning, compliance checks, certificate management, and security report generation.
Audit Modules
1. Web Application Security (OWASP Top 10)
- SQL Injection detection
- XSS (Cross-Site Scripting) scanning
- CSRF protection verification
- SSRF vulnerability assessment
- Authentication bypass detection
- API security (JWT/OAuth misconfigurations)
2. Infrastructure Security
- Port scanning with service fingerprinting
- Open port risk analysis and remediation
- Firewall rule audit and optimization
- Cloud security group misconfiguration detection
- Docker/K8s container security scanning
3. Compliance & Standards
| Standard | Coverage | Report Format |
|---|---|---|
| CIS Benchmarks | Level 1 & 2 | PDF/JSON |
| ISO 27001 | Annex A controls | PDF/Excel |
| GDPR | Article 32 (Security) | |
| 等保2.0 | Level 2 & 3 | PDF/Word |
| PCI DSS | SAQ D | |
| SOC 2 | Trust Service Criteria |
4. TLS/SSL Certificate Management
- Certificate expiration monitoring (30/14/7 day alerts)
- Cipher suite strength analysis
- HSTS/HPKP configuration audit
- Certificate chain validation
- Let's Encrypt auto-renewal integration
5. Vulnerability Intelligence
- Real-time CVE database synchronization (NVD/CNVD)
- Affected component matching (OS, libraries, frameworks)
- CVSS score calculation and prioritization
- Exploit availability tracking (ExploitDB/Metasploit)
- Patch Tuesday update recommendations
6. Ransomware Defense
- Backup strategy assessment (3-2-1 rule)
- File extension monitoring for suspicious changes
- Network segmentation audit
- Endpoint detection configuration review
- Incident response playbook generation
Usage
# Full security audit
openclaw skill run cybersecurity-audit --target example.com --report pdf
# Quick port scan
openclaw skill run cybersecurity-audit --scan ports --target 192.168.1.0/24
# Compliance check
openclaw skill run cybersecurity-audit --compliance cis --level 1
Output
Generates structured security reports with:
- Executive summary
- Detailed findings with CVSS scores
- Remediation steps ordered by priority
- Compliance gap analysis
- Executive dashboard (charts & metrics)
Usage Guidance
Install only if you will use it for systems you own or are explicitly authorized to assess. Before running scans, define the target scope, get permission, consider rate limits and monitoring alerts, and avoid public or third-party targets unless authorization is documented. VirusTotal and static scan were clean, and no hidden executable code was present.
Capability Tags
Capability Assessment
Purpose & Capability
The stated purpose is cybersecurity auditing and hardening, and the advertised capabilities such as OWASP checks, port scanning, TLS review, CVE matching, and compliance reporting fit that purpose.
Instruction Scope
The artifact gives example scan commands and describes vulnerability and port scanning, but it does not require user confirmation that targets are owned or authorized, nor does it define safe scope limits or operational impact.
Install Mechanism
The package contains only SKILL.md and declares expected dependencies for this type of work: python>=3.10, nmap, and openssl. No executable installer or hidden files were present.
Credentials
Network/security tooling is proportionate for an audit skill, but running scans can affect third-party systems, trigger monitoring, or create legal and operational risk if used outside an authorized environment.
Persistence & Privilege
No persistence, background worker, credential harvesting, privilege escalation, or local profile/session access is described in the artifacts.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install cybersecurity-audit - After installation, invoke the skill by name or use
/cybersecurity-audit - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of Cybersecurity Audit & Hardening skill:
- Supports enterprise-grade security auditing across web, infrastructure, compliance, and ransomware defense.
- Covers OWASP Top 10, CIS Benchmarks, various regulatory and industry standards (ISO 27001, GDPR, 等保2.0, PCI DSS, SOC 2).
- Provides TLS/SSL certificate management with expiration alerts, chain validation, and cipher suite analysis.
- Integrates real-time CVE vulnerability sync and exploit tracking.
- Generates automated, structured reports (PDF/JSON/Excel/Word) including prioritized remediation and executive summaries.
Metadata
Frequently Asked Questions
What is Cybersecurity Audit & Hardening?
企业级网络安全审计与加固技能。覆盖OWASP Top 10漏洞扫描、CIS基准合规检查、TLS/SSL证书管理、端口扫描与渗透测试辅助、GDPR/等保2.0合规评估、勒索软件防护策略生成。内置CVE数据库同步,支持自动化安全报告输出。 It is an AI Agent Skill for Claude Code / OpenClaw, with 18 downloads so far.
How do I install Cybersecurity Audit & Hardening?
Run "/install cybersecurity-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Cybersecurity Audit & Hardening free?
Yes, Cybersecurity Audit & Hardening is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Cybersecurity Audit & Hardening support?
Cybersecurity Audit & Hardening is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Cybersecurity Audit & Hardening?
It is built and maintained by ai-gaoqian (@ai-gaoqian); the current version is v1.0.0.
More Skills