← Back to Skills Marketplace
Nmap Pentest Scans
by
Muhammad Mazhar Saeed
· GitHub ↗
· v0.1.0
1002
Downloads
0
Stars
7
Active Installs
1
Versions
Install in OpenClaw
/install nmap-pentest-scans
Description
Plan and orchestrate authorized Nmap host discovery, port and service enumeration, NSE profiling, and reporting artifacts for in-scope targets.
Usage Guidance
This skill appears to be a planner that produces reproducible Nmap command sequences and reports; it enforces scope checks and requires an explicit authorization flag before non-dry-run execution. Before installing or running it: ensure the referenced shared module (autonomous-pentester/shared/pentest_common) is present and trusted in your environment, confirm you understand where the skill will read scope/input files and write artifacts, and be aware the skill will not actually execute nmap commands (you or another tool must run the generated commands). If you expected an automated runner that executes scans, note this skill only generates plans and findings artifacts.
Capability Analysis
Type: OpenClaw Skill
Name: nmap-pentest-scans
Version: 0.1.0
The `scripts/nmap_pentest_scans.py` script constructs Nmap commands by directly embedding the user-provided `--target` argument into f-strings without proper shell escaping. This creates a critical shell injection vulnerability. If the AI agent, which is instructed to 'run' these scans via `agents/openai.yaml`, executes the generated commands (e.g., from `recommended-commands.txt` or `scan-plan.json`), a malicious target input could lead to arbitrary command execution on the host running the agent. While the skill includes authorization and scope validation, these do not mitigate the shell injection risk from a malformed but in-scope target.
Capability Assessment
Purpose & Capability
Name/description promise matches the primary behavior: producing Nmap scan workflows, profiles, and artifacts. One mismatch: the description/README language implies the skill can 'orchestrate' live scans, but the included code only generates plans/commands and writes artifacts rather than invoking nmap or performing network operations. No Nmap binary is required (and none is installed), which is coherent with a planner but not with a fully automated runner.
Instruction Scope
SKILL.md and the script are scoped to planning: validate scope, require explicit authorization for non-dry-run, build command sequences, and produce deterministic artifacts. The script validates scope and enforces --i-have-authorization for active runs. It reads input payload and scope files and writes artifacts under the output path — these file reads/writes are expected for this purpose. It does not perform network access or transmit data externally.
Install Mechanism
There is no install spec (instruction-only plus a local Python script), so nothing is downloaded or extracted. Risk from installation is minimal.
Credentials
No environment variables, credentials, or config paths are requested. The script reads a scope file and an input payload (expected for planning) but does not ask for unrelated secrets or platform keys.
Persistence & Privilege
The skill is not always-enabled, is user-invocable, and does not request elevated or persistent platform privileges. It writes artifacts to the output path provided by the user, which is normal for a planner.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install nmap-pentest-scans - After installation, invoke the skill by name or use
/nmap-pentest-scans - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial release of nmap-pentest-scans.
- Plans and orchestrates authorized Nmap discovery, enumeration, and reporting workflows.
- Enforces scope validation and explicit authorization before live scans.
- Supports selectable scan profiles (stealth, balanced, fast) with reproducible command plans.
- Outputs structured artifacts: scan plans, recommended commands, and normalized findings.
- Includes legal notice emphasizing authorized use only.
Metadata
Frequently Asked Questions
What is Nmap Pentest Scans?
Plan and orchestrate authorized Nmap host discovery, port and service enumeration, NSE profiling, and reporting artifacts for in-scope targets. It is an AI Agent Skill for Claude Code / OpenClaw, with 1002 downloads so far.
How do I install Nmap Pentest Scans?
Run "/install nmap-pentest-scans" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Nmap Pentest Scans free?
Yes, Nmap Pentest Scans is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Nmap Pentest Scans support?
Nmap Pentest Scans is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Nmap Pentest Scans?
It is built and maintained by Muhammad Mazhar Saeed (@0x-professor); the current version is v0.1.0.
More Skills