← Back to Skills Marketplace
IdentityMonitoringAgent
by
Anthony Assi
· GitHub ↗
· v1.0.4
· MIT-0
129
Downloads
0
Stars
0
Active Installs
5
Versions
Install in OpenClaw
/install identity-monitoring-agent
Description
An OSINT sentinel that monitors the public web for email exposure, username footprint, and identity leaks without API keys.
README (SKILL.md)
IdentityMonitoringAgent
This agent acts as a digital investigator. It scans the public web and platform recovery flows to find where personal data might be exposed.
Setup
Install the necessary OSINT libraries in your LXC environment:
pip install holehe sherlock-project googlesearch-python
Local Testing
Before using the agent via the UI, verify the logic directly on your DGX Spark terminal:
Test Email Scanning
python3 monitor.py --tool scan_email --target [email protected]
Test Username Tracking
python3 monitor.py --tool scan_username --target example_user
Test Web Dorking
python3 monitor.py --tool search_leaks --query "example_query"
Note: If registered_sites returns an empty list [], it indicates no hits were found on supported platforms or the service is temporarily rate-limited.
User Instructions
- "Check if the email [email protected] is registered on any social platforms."
- "Find all social media accounts associated with the username 'example_user'."
- "Search the web for public mentions or leaks of the phone number 555-0123."
Tools
scan_email
Checks 120+ sites to see if an email is registered using forgotten password flows.
- Inputs:
email(string) - Call:
python3 monitor.py --tool scan_email --target {{email}}
scan_username
Hunts for a specific username across 400+ social networks and platforms.
- Inputs:
username(string) - Call:
python3 monitor.py --tool scan_username --target {{username}}
search_leaks
Uses advanced Google Dorks to find identifiers on leak sites, forums, and pastebins.
- Inputs:
query(string) - Call:
python3 monitor.py --tool search_leaks --query "{{query}}"
Usage Guidance
This skill appears to do what it says: run holehe and sherlock and perform Google dorks to look for exposed emails/usernames. Before installing, consider: run it in an isolated environment (container/VM) because it will perform network scans and install third-party pip packages; review the holehe and sherlock projects for safety and licensing; avoid scanning targets you don't own or have permission to probe (legal/terms-of-service risk); be aware Google scraping may be rate-limited or flagged; the code invokes subprocesses based on user input (it uses list-form subprocess calls, which avoids shell interpolation, but still will perform network actions you trigger), so only provide targets you intend to scan. Finally, the skill's source/homepage is unknown — if you need stronger trust, obtain the upstream repository or a publisher with an audit trail before widespread use.
Capability Analysis
Type: OpenClaw Skill
Name: identity-monitoring-agent
Version: 1.0.4
The IdentityMonitoringAgent is a legitimate OSINT tool designed to check for email and username exposure using established libraries like 'holehe' and 'sherlock'. The implementation in 'monitor.py' uses secure subprocess handling (passing arguments as lists) to prevent shell injection, and the 'search_leaks' function uses standard Google dorking techniques. No evidence of malicious intent, data exfiltration, or prompt injection was found.
Capability Assessment
Purpose & Capability
Name/description (email/username/identity monitoring) match the actual requirements: python3 plus the OSINT tools holehe and sherlock and a Google-search library are exactly what the skill needs.
Instruction Scope
SKILL.md and monitor.py instruct only to run holehe/sherlock and perform Google dork searches. The code does not read unrelated files, environment variables, or send results to any external endpoint beyond the standard network activity of the invoked tools and googlesearch.
Install Mechanism
There is no formal install spec (instruction-only). SKILL.md tells users to pip install holehe, sherlock-project, and googlesearch-python — expected for this functionality but this will install third-party packages on disk; verify those packages' provenance before installing.
Credentials
No environment variables, credentials, or config paths are requested. The skill does not attempt to access unrelated secrets or system config.
Persistence & Privilege
always is false and the skill does not request elevated or persistent platform privileges or modify other skills' configs. It runs on-demand and can be invoked by the agent as usual.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install identity-monitoring-agent - After installation, invoke the skill by name or use
/identity-monitoring-agent - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.4
IdentityMonitoringAgent v1.0.4
- Improved documentation with clear user instructions and tool descriptions.
- Added setup steps for required OSINT libraries and local testing commands.
- Detailed examples provided for email, username, and web leak checks.
- Clarified input parameters and command-line usage for each tool.
v1.0.3
- Added setup instructions for installing required OSINT libraries.
- Included a new Local Testing section with usage examples for direct terminal verification.
- Clarified note about empty `registered_sites` results, explaining possible causes.
- User instructions and tool descriptions remain unchanged.
v1.0.2
- Bumped version to 1.0.2.
- No user-facing changes documented in SKILL.md.
- Likely minor internal improvements or bug fixes in monitor.py.
v1.0.1
- Added SKILL.md with detailed usage instructions and feature descriptions.
- Clarified available tools: scan_email, scan_username, and search_leaks.
- Listed required dependencies (python3, holehe, sherlock) for operation.
- Updated metadata and keyword tags for improved discoverability.
- Incremented version to 1.0.1.
v1.0.0
Initial release of IdentityMonitoringAgent.
- Monitors the public web for email, username, and personal identifier exposure without requiring API keys.
- Supports scanning emails for platform registrations, checking usernames across social networks, and searching for leaks using Google Dorks.
- Utilizes open-source tools (holehe and sherlock) for OSINT investigations.
- Designed for privacy, security, and identity protection with clear user instructions.
Metadata
Frequently Asked Questions
What is IdentityMonitoringAgent?
An OSINT sentinel that monitors the public web for email exposure, username footprint, and identity leaks without API keys. It is an AI Agent Skill for Claude Code / OpenClaw, with 129 downloads so far.
How do I install IdentityMonitoringAgent?
Run "/install identity-monitoring-agent" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is IdentityMonitoringAgent free?
Yes, IdentityMonitoringAgent is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does IdentityMonitoringAgent support?
IdentityMonitoringAgent is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created IdentityMonitoringAgent?
It is built and maintained by Anthony Assi (@assix); the current version is v1.0.4.
More Skills