← 返回 Skills 市场
139
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install cybersec-cert-advisor
功能描述
Generate personalized cybersecurity certification and career advancement plans based on individual assessment data and professional goals.
使用说明 (SKILL.md)
Overview
The Cybersecurity Certification Advisor is a professional guidance platform designed to help security professionals chart their career trajectory and identify the most relevant certifications for their goals. Built by CISSP and CISM certified experts, this API analyzes your experience, skills, interests, and career aspirations to deliver a customized certification roadmap.
Whether you're transitioning into cybersecurity, advancing from junior to senior roles, or specializing in a particular domain (cloud security, application security, governance, risk, and compliance), the advisor provides data-driven recommendations aligned with industry standards and market demand. The platform considers your current experience level, career stage, and professional objectives to suggest certifications that maximize career value and earning potential.
Ideal users include security professionals seeking career guidance, hiring managers building talent development programs, educational institutions advising students, and organizations planning workforce upskilling initiatives.
Usage
Sample Request:
{
"sessionId": "sess-20240115-abc123",
"userId": 5042,
"timestamp": "2024-01-15T09:30:00Z",
"assessmentData": {
"sessionId": "sess-20240115-abc123",
"timestamp": "2024-01-15T09:30:00Z",
"career": {
"currentRole": "Security Analyst",
"yearsInCybersecurity": 3,
"currentOrganizationSize": "Enterprise",
"industryFocus": "Financial Services"
},
"experience": {
"certifications": ["CompTIA Security+", "CompTIA Network+"],
"toolsAndTechnologies": ["Splunk", "Fortinet FortiGate", "CrowdStrike Falcon"],
"areasOfExpertise": ["Threat Detection", "Incident Response", "Log Analysis"]
},
"interests": ["Cloud Security", "Threat Intelligence", "Security Architecture"],
"goals": {
"targetRole": "Senior Security Architect",
"timeframe": "3 years",
"careerPriority": "Technical Leadership"
}
}
}
Sample Response:
{
"status": "success",
"sessionId": "sess-20240115-abc123",
"timestamp": "2024-01-15T09:30:15Z",
"certificationPlan": {
"recommendedCertifications": [
{
"certification": "CISSP",
"priority": "High",
"timeline": "12-18 months",
"rationale": "Essential for security architect roles; validates holistic security knowledge across 8 domains",
"prerequisite": "5+ years security experience (3 years current + 2 years additional recommended)"
},
{
"certification": "AWS Certified Security – Specialty",
"priority": "High",
"timeline": "6-9 months",
"rationale": "Aligns with cloud security interest; highly valued in enterprise environments",
"prerequisites": "AWS Solutions Architect Associate recommended first"
},
{
"certification": "GIAC Security Essentials (GSEC)",
"priority": "Medium",
"timeline": "4-6 months",
"rationale": "Bridges gap between current certifications and CISSP; demonstrates incident response expertise"
}
],
"careerPathway": {
"phase1": {
"duration": "Months 1-6",
"focus": "Cloud Security Foundations",
"actions": ["Complete AWS Security Specialty", "Lead cloud security initiatives at current organization"]
},
"phase2": {
"duration": "Months 7-18",
"focus": "Enterprise Architecture & Leadership",
"actions": ["Pursue CISSP eligibility", "Mentor junior analysts", "Design security frameworks"]
},
"phase3": {
"duration": "Months 19-36",
"focus": "Senior Architect Transition",
"actions": ["Obtain CISSP", "Move to architect or leadership role", "Develop specialization in threat intelligence"]
}
},
"skillGaps": [
"Enterprise architecture frameworks (TOGAF knowledge helpful)",
"Strategic risk management and compliance (CISM valuable)",
"Advanced cloud security design patterns"
],
"estimatedSalaryProgression": {
"current": "$110,000 - $130,000",
"withRecommendedCerts": "$150,000 - $200,000",
"targetRole": "$180,000 - $250,000+"
}
}
}
Endpoints
GET /
Description: Root endpoint
Parameters: None
Response: JSON object confirming API availability
GET /health
Description: Health check endpoint to verify service availability
Parameters: None
Response: JSON object with service health status
POST /api/cybersecurity/advisor
Description: Generate a personalized certification and career advancement plan based on assessment data
Parameters:
| Name | Type | Required | Description |
|---|---|---|---|
sessionId |
string | Yes | Unique session identifier for tracking and audit purposes |
userId |
integer or null | No | Optional user identifier for analytics and historical comparison |
timestamp |
string | Yes | ISO 8601 timestamp of when the assessment was submitted |
assessmentData |
object | Yes | Comprehensive assessment data object (see below) |
assessmentData Object:
| Name | Type | Required | Description |
|---|---|---|---|
sessionId |
string | Yes | Session identifier (must match parent sessionId) |
timestamp |
string | Yes | ISO 8601 timestamp of assessment completion |
career |
object | No | Current career information (role, years in field, organization type, industry focus) |
experience |
object | No | Professional background (existing certifications, tools, technical expertise areas) |
interests |
array | No | List of career interests and specialization areas (e.g., "Cloud Security", "Threat Intelligence") |
goals |
object | No | Career objectives (target role, timeframe, priority) |
Response:
Status: 200 OK
Content-Type: application/json
Schema: Certification plan object containing:
- recommendedCertifications: array of personalized certification recommendations with priority, timeline, and rationale
- careerPathway: phased approach to career advancement with specific milestones
- skillGaps: identified technical and soft skill gaps
- estimatedSalaryProgression: current, post-certification, and target role salary ranges
- timestamp: response generation timestamp
Error Responses:
| Status | Description |
|---|---|
| 422 | Validation Error – Required fields missing or malformed (sessionId, timestamp, or assessmentData invalid) |
Pricing
| Plan | Calls/Day | Calls/Month | Price |
|---|---|---|---|
| Free | 5 | 50 | Free |
| Developer | 20 | 500 | $39/mo |
| Professional | 200 | 5,000 | $99/mo |
| Enterprise | 100,000 | 1,000,000 | $299/mo |
About
ToolWeb.in - 200+ security APIs, CISSP & CISM, platforms: Pay-per-run, API Gateway, MCP Server, OpenClaw, RapidAPI, YouTube.
- toolweb.in
- portal.toolweb.in
- hub.toolweb.in
- toolweb.in/openclaw/
- rapidapi.com/user/mkrishna477
- youtube.com/@toolweb-009
References
- Kong Route: https://api.mkkpro.com/career/cert-advisor
- API Docs: https://api.mkkpro.com:8074/docs
安全使用建议
This skill appears internally consistent and low-risk as an instruction-only advisor, but there are two practical concerns to address before using it with real personal data: (1) provenance — the package has no homepage or author information you can verify, so consider whether you trust the owner ID; (2) destination — the OpenAPI spec lacks a server/base URL, so find out (and verify) the exact endpoint the agent will call and confirm it uses HTTPS and a privacy policy you accept. Avoid sending PII or employer-sensitive details until you confirm who hosts the service, where data is stored/processed, and how long it will be retained. If you prefer, ask for a self-contained/local version (no external network calls) or a clear server URL and privacy terms before installing.
功能分析
Type: OpenClaw Skill
Name: cybersec-cert-advisor
Version: 1.0.0
The skill bundle describes a legitimate cybersecurity career advisory service that provides certification recommendations based on user-provided professional data. The documentation in SKILL.md and the API specification in openapi.json are consistent with the stated purpose, and no evidence of malicious execution, data exfiltration, or prompt injection was found. The external links point to the developer's service infrastructure (toolweb.in, mkkpro.com).
能力评估
Purpose & Capability
The name and description (certification/career advisor) align with the SKILL.md and openapi schema: both describe taking assessmentData and returning a certification plan. There are no unrelated env vars, binaries, or install actions requested. Note: the package provenance is unknown (no homepage, source unknown, owner ID only), which reduces trust but does not contradict the stated purpose.
Instruction Scope
The SKILL.md contains only API documentation, sample requests/responses, and endpoint schemas. It does not instruct the agent to read local files, access unrelated environment variables, or exfiltrate system data. One practical gap: the OpenAPI description does not include a server/base URL, so the instructions are incomplete about where network requests would be sent.
Install Mechanism
No install spec and no code files beyond documentation/OpenAPI. This is the lowest-risk model (instruction-only). Nothing is written to disk or installed by the skill itself.
Credentials
The skill requests no environment variables, credentials, or config paths. That is proportionate to a guidance/analysis skill. Caution: the skill is designed to accept personal assessmentData — if the agent were configured to call a remote API, that could transmit sensitive personal data to an external service, so confirm endpoint and privacy practices.
Persistence & Privilege
always is false and there are no statements about modifying agent/system configuration. The skill does not request persistent privileges or special system presence.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install cybersec-cert-advisor - 安装完成后,直接呼叫该 Skill 的名称或使用
/cybersec-cert-advisor触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Cybersecurity Certification Advisor v1.0.0 – Initial Release
- Launches a professional guidance platform for personalized cybersecurity certification and career advancement planning.
- Provides data-driven, tailored certification roadmaps based on users’ experience, interests, and career goals.
- Features API endpoint for generating certification plans, identified skill gaps, and phased career pathways with salary projections.
- Designed for security professionals, hiring managers, educational advisors, and organizations seeking workforce upskilling.
- Includes clear usage examples, detailed endpoint documentation, and transparent pricing plans.
元数据
常见问题
CyberSec Cert Advisor 是什么?
Generate personalized cybersecurity certification and career advancement plans based on individual assessment data and professional goals. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 139 次。
如何安装 CyberSec Cert Advisor?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install cybersec-cert-advisor」即可一键安装,无需额外配置。
CyberSec Cert Advisor 是免费的吗?
是的,CyberSec Cert Advisor 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
CyberSec Cert Advisor 支持哪些平台?
CyberSec Cert Advisor 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 CyberSec Cert Advisor?
由 ToolWeb(@krishnakumarmahadevan-cmd)开发并维护,当前版本 v1.0.0。
推荐 Skills