← Back to Skills Marketplace
metasploit-framework-skill
by
Herbert He
· GitHub ↗
· v1.0.0
· MIT-0
100
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install metasploit-framework-skill
Description
Guides AI agents to perform penetration testing with Metasploit Framework via bash; includes scanning, exploit selection, payload delivery, session and post-...
Usage Guidance
This skill is a full Metasploit playbook — internally consistent for authorized penetration testing but dangerous if run on production or without permission. Before installing or invoking it: 1) Confirm you have explicit authorization to test the target(s). 2) Run in an isolated lab/VM (not your workstation or production host). 3) Inspect any remote install commands (the SKILL.md recommends curl from GitHub raw and running the script); prefer distro packages or vetted installers where possible. 4) Avoid running docker with --network host or mounting sensitive host paths; prefer running the container in an isolated network/VM. 5) Disable autonomous execution or require human confirmation before executing any install, msfconsole, msfvenom, handler, or persistence commands. 6) Be aware the skill instructs clearing logs and creating persistence — these are intrusive actions; review and approve each command before execution. Given the skill has no provenance (no homepage/source), treat it with additional caution and review the exact commands you or the agent will run.
Capability Analysis
Type: OpenClaw Skill
Name: metasploit-framework-skill
Version: 1.0.0
This skill bundle provides a comprehensive toolkit and detailed instructions for an AI agent to perform offensive cyber operations using the Metasploit Framework. It includes explicit guidance for reconnaissance, exploitation, credential theft (e.g., `hashdump`), data exfiltration, and establishing persistence (e.g., adding a 'hacker' user or registry backdoors) across files like SKILL.md, pentest-workflows.md, and post-exploitation.md. While these activities are aligned with the stated purpose of penetration testing, the automation of high-risk behaviors—including stealth techniques like log clearing (clearev) and the use of curl|bash for installation from the official Rapid7 repository—poses a significant risk of unauthorized use or automated abuse.
Capability Assessment
Purpose & Capability
The name/description (Metasploit-based pentesting) matches the content: SKILL.md and supplemental files provide step-by-step, non-interactive Metasploit workflows (nmap, msfconsole, msfvenom, handlers, post-exploitation). The instructions expect msfconsole, msfvenom, nmap, docker, etc., which are appropriate for the stated purpose even though the registry metadata did not declare those binaries.
Instruction Scope
The instructions go beyond passive guidance and specify concrete system-altering actions: installing software, pulling images, running containers with --network host and mounted volumes, generating payloads, starting background handlers, creating user accounts, modifying cron/registry for persistence, and clearing logs. These actions are consistent with an offensive pentest guide but are high-impact and could cause harm if executed unintentionally or without authorization.
Install Mechanism
There is no formal install spec in the registry, but the SKILL.md tells agents to run installation commands that download and execute remote scripts (curl raw.githubusercontent.com → /tmp/msfinstall && exec) and to docker pull/run images. Download-and-execute from the network and running containers with host networking are high-risk operations and should be reviewed before use. The sources (GitHub raw, Docker Hub metasploit image) are common release hosts, but executing remote scripts remains a risk.
Credentials
The skill declares no required environment variables or credentials, which aligns with the registry metadata. At runtime it auto-detects local network addresses (LHOST) and reads local network/config state (ip route, ifconfig) and writes files under /tmp or mounted volumes. Those accesses are proportional to launching reverse handlers and payloads for pentesting, but they expose/require system network context and filesystem write access.
Persistence & Privilege
The guide explicitly instructs creating persistent backdoors (cron entries, registry persistence, new users, service modifications), running long-lived background handlers, and clearing logs. While normal for a pentest workflow, these are elevated, persistent changes to the host. The skill is not marked always:true, but because the agent may autonomously run commands, allow-listing/approval and constrained runtime privileges are recommended before allowing it to run.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install metasploit-framework-skill - After installation, invoke the skill by name or use
/metasploit-framework-skill - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Init
Metadata
Frequently Asked Questions
What is metasploit-framework-skill?
Guides AI agents to perform penetration testing with Metasploit Framework via bash; includes scanning, exploit selection, payload delivery, session and post-... It is an AI Agent Skill for Claude Code / OpenClaw, with 100 downloads so far.
How do I install metasploit-framework-skill?
Run "/install metasploit-framework-skill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is metasploit-framework-skill free?
Yes, metasploit-framework-skill is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does metasploit-framework-skill support?
metasploit-framework-skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created metasploit-framework-skill?
It is built and maintained by Herbert He (@herberthe); the current version is v1.0.0.
More Skills