← 返回 Skills 市场
Exposure Sentinel
作者
chenhaubin
· GitHub ↗
· v1.0.0
· MIT-0
231
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install exposure-sentinel
功能描述
Check if IP addresses are listed on the OpenClaw Exposure Watchboard (openclaw.allegro.earth). Use when you need to verify whether specific IPs are publicly...
使用说明 (SKILL.md)
Exposure Sentinel
A sentinel that watches over the OpenClaw Exposure Watchboard, checking if your IPs are publicly listed as exposed instances.
When to Use
- Security auditing: Check if your infrastructure IPs are accidentally exposed
- Proactive monitoring: Verify exposure status of critical endpoints
- Incident response: Confirm if a suspected exposure is publicly known
Quick Start
Check a Single IP
python3 skills/exposure-sentinel/scripts/check_ip.py 1.2.3.4
Check Multiple IPs
python3 skills/exposure-sentinel/scripts/check_ip.py 1.2.3.4 5.6.7.8
With Progress Output
python3 skills/exposure-sentinel/scripts/check_ip.py 1.2.3.4 -v
JSON Output (for automation)
python3 skills/exposure-sentinel/scripts/check_ip.py 1.2.3.4 --json
How It Works
- Concurrent scanning: Uses 50 concurrent connections to scan all 3,357 pages
- Pattern matching: Handles both full IPs and partially masked IPs (e.g.,
1.2.3.•••) - Complete coverage: Checks every page of the exposure database
- Typical runtime: ~85-95 seconds for full scan
Interpreting Results
- ✅ Not found: IP is not listed in the exposure database (safe)
- ⚠️ EXPOSED: IP appears on the watchboard with page links for details
Technical Details
- Source: https://openclaw.allegro.earth
- Total pages: 3,357 (100 records per page)
- Total records: ~335,000 exposed instances
- Scan rate: ~40 pages/second
About OpenClaw Exposure Watchboard
This is a public security research database listing publicly reachable OpenClaw instances for defensive awareness. If your IP appears here, it means:
- The instance is directly exposed to the internet
- Authentication may be disabled or weak
- Immediate action recommended: enable auth, restrict access, patch
安全使用建议
This skill appears to do what it says: run the included Python script to check the public OpenClaw Exposure Watchboard for IPs. Before installing/running, confirm you have a compatible Python environment and install aiohttp. Be aware the script aggressively fetches thousands of pages with 50 concurrent connections — that can generate significant traffic and could be considered abusive by the target site; consider lowering CONCURRENT_LIMIT or contacting the site owner, obey robots.txt and terms of service, and avoid running scans from sensitive networks. If you need more assurance, inspect the script yourself or run it from an isolated environment (rate-limit / proxy) to avoid accidental abuse.
功能分析
Type: OpenClaw Skill
Name: exposure-sentinel
Version: 1.0.0
The exposure-sentinel skill is a specialized utility designed to check if specific IP addresses are listed on the OpenClaw Exposure Watchboard (openclaw.allegro.earth). The script scripts/check_ip.py implements this by performing asynchronous HTTP GET requests to download pages from the watchboard and searching the response text locally for the target IPs, which is a privacy-preserving approach compared to sending IPs in query parameters. The code is transparent, lacks obfuscation, and contains no indicators of data exfiltration, unauthorized execution, or malicious prompt injection.
能力评估
Purpose & Capability
Name/description match the implementation: the Python script fetches pages from https://openclaw.allegro.earth and searches for the target IP(s). No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
SKILL.md instructs the agent to run the included script to scan the public site. The instructions do not ask the agent to read local files, environment variables, or transmit results to other endpoints. Note: the tool performs broad network requests (all pages on the site) which is consistent with the claimed full-site scan.
Install Mechanism
This is an instruction-only skill with no install spec. The bundled script depends on aiohttp (and Python 3.9+ annotations); the skill does not declare or install that dependency. That is not malicious but you should ensure the runtime has the required Python packages available.
Credentials
The skill requests no environment variables, credentials, or config paths. The lack of secrets is proportionate to a public-site scraping/checking tool.
Persistence & Privilege
The skill is not always-enabled and does not modify agent/system configuration. It does not request persistent privileges or autonomy beyond normal agent invocation.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install exposure-sentinel - 安装完成后,直接呼叫该 Skill 的名称或使用
/exposure-sentinel触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: Scan OpenClaw Exposure Watchboard for exposed IPs
元数据
常见问题
Exposure Sentinel 是什么?
Check if IP addresses are listed on the OpenClaw Exposure Watchboard (openclaw.allegro.earth). Use when you need to verify whether specific IPs are publicly... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 231 次。
如何安装 Exposure Sentinel?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install exposure-sentinel」即可一键安装,无需额外配置。
Exposure Sentinel 是免费的吗?
是的,Exposure Sentinel 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Exposure Sentinel 支持哪些平台?
Exposure Sentinel 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Exposure Sentinel?
由 chenhaubin(@chenhaubin)开发并维护,当前版本 v1.0.0。
推荐 Skills