← 返回 Skills 市场
160
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install hexstrike
功能描述
Cybersecurity assistant for CTF challenges, penetration testing, network recon, vulnerability assessment, and security research. Use when: (1) solving CTF ch...
使用说明 (SKILL.md)
HexStrike — Cybersecurity & CTF Skill
Overview
Execute security tools directly via exec. No middleware, no MCP server — direct CLI access to 150+ security tools with methodology-driven workflows.
First Step: Check Available Tools
Before starting any engagement, run the tool checker to see what's installed:
bash scripts/tool-check.sh # All categories
bash scripts/tool-check.sh network # Just network tools
bash scripts/tool-check.sh web # Just web tools
Adapt the workflow to available tools. If a preferred tool is missing, suggest installation or use alternatives.
CTF Workflow
When given a CTF challenge:
- Identify category from description/files (web, crypto, pwn, forensics, rev, misc, OSINT)
- Read
references/ctf-playbook.mdfor the matching category section - Triage — run quick identification commands before heavy tools
- Iterate — CTF is exploratory; try the obvious first, escalate to specialized tools
- Document findings as you go — note promising leads
Category Identification Hints
| Indicators | Category |
|---|---|
| URL, web app, login page, cookies | web |
| Ciphertext, hash, encoded data, RSA, AES | crypto |
| Binary file, ELF, PE, segfault, nc connection | pwn |
| Image file, pcap, memory dump, disk image | forensics |
| Binary to analyze, "what does this do", crackme | rev |
| Username, location, social media, domain | OSINT |
| Encoding, QR code, audio file, esoteric | misc |
Recon / Pentest Workflow
For reconnaissance or penetration testing engagements:
- Read
references/recon-methodology.mdfor the full phased approach - Phase 1: Passive recon (subdomains, DNS, WHOIS, certificate transparency)
- Phase 2: Active recon (port scanning, service enumeration)
- Phase 3: Vulnerability scanning (nuclei, nikto, nmap scripts)
- Phase 4: Web app testing (directory brute-force, injection testing)
- Phase 5: Credential attacks (only when authorized)
Tool Reference
For quick syntax lookup on any of the 80+ tools, read references/tool-reference.md.
Execution Guidelines
Output Handling
- Pipe long outputs to files:
nmap ... -oA /tmp/nmap_results - Use
| head -50or| tail -20for initial review - Save important results:
> /tmp/\x3Ctool>_\x3Ctarget>_results.txt
Safety
- Never run offensive tools against targets without explicit authorization
- Default to non-invasive scans first (passive recon, version detection)
- Escalate to active testing only when confirmed authorized
- Use
--batchflags where available to avoid interactive prompts (e.g., sqlmap) - Set reasonable timeouts and rate limits to avoid disruption
Tool Installation
If critical tools are missing, suggest install commands:
- Debian/Ubuntu:
sudo apt install \x3Cpackage> - pip tools:
pip3 install \x3Cpackage> - Go tools:
go install \x3Crepo>@latest - Kali Linux: Most tools pre-installed;
sudo apt install kali-tools-*for categories
Long-Running Scans
Use exec with background: true and yieldMs for scans that take minutes:
exec: nmap -sV -sC -p- \x3CTARGET> -oA /tmp/full_scan
background: true, yieldMs: 30000
Check progress with process(action=poll).
安全使用建议
This skill is an instruction-rich pentest/CTF assistant that expects to run local CLI tools. Before installing, confirm you trust the skill owner and understand that the agent may execute system commands, create files in /tmp, and suggest installing packages (apt/pip/go). Do not allow the agent to run offensive scans against systems for which you lack explicit authorization. If you have strict security policies, either (1) run the skill in an isolated environment (VM/container) with only the tools you want available, or (2) review and restrict the agent's ability to execute commands. The included script merely checks for installed tools and appears benign.
功能分析
Type: OpenClaw Skill
Name: hexstrike
Version: 1.0.0
The 'hexstrike' skill bundle provides an AI agent with direct CLI access to over 150 security and offensive tools (e.g., nmap, sqlmap, hydra, and various exploitation frameworks) via the 'exec' command. While the stated purpose is for CTF challenges and authorized penetration testing, and the bundle includes safety warnings in SKILL.md, it grants the agent broad, high-risk capabilities for network scanning, vulnerability exploitation, and credential attacks without middleware or safety layers. The inclusion of comprehensive offensive playbooks (ctf-playbook.md, recon-methodology.md) and a tool-checking script (scripts/tool-check.sh) facilitates complex security operations that could be easily repurposed for unauthorized activities.
能力评估
Purpose & Capability
Name/description match the content: the skill is an instruction-first pentest/CTF assistant that documents and runs common security tools and workflows. It does not request unrelated credentials or configuration paths.
Instruction Scope
SKILL.md instructs the agent to execute many offensive security CLI tools, save outputs to /tmp, and use background exec/polling for long scans. This is expected for the stated purpose but grants the agent broad ability to run local commands and create files; the skill also explicitly warns to only test authorized targets.
Install Mechanism
There is no install spec (instruction-only plus a small local helper script). The included shell script merely checks for command availability; no external downloads or archive extraction are performed.
Credentials
The skill does not require any environment variables, credentials, or config paths. Some workflows mention using existing profiles or tokens (e.g., AWS profile, wpscan API token) as optional inputs — this is appropriate and not requested by the skill itself.
Persistence & Privilege
The skill is not force-included (always:false) and uses normal autonomous invocation semantics. It does not request persistent system privileges or attempt to modify other skills or global agent configuration.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install hexstrike - 安装完成后,直接呼叫该 Skill 的名称或使用
/hexstrike触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
HexStrike 1.0.0 — Initial release
- Launches a cybersecurity assistant for CTF, pentesting, recon, binary analysis, forensics, cloud security, and more.
- Enables direct CLI access to 150+ security tools with methodology-driven workflows and no middleware.
- Provides structured guidance for CTF challenges, including category identification and tool usage methodologies.
- Includes phased reconnaissance and penetration testing workflow, with tool usage and output management advice.
- Offers quick syntax lookup by referencing curated documentation for 80+ tools.
- Emphasizes safety, authorization, and non-invasive best practices for tool execution.
元数据
常见问题
Hexstrike 是什么?
Cybersecurity assistant for CTF challenges, penetration testing, network recon, vulnerability assessment, and security research. Use when: (1) solving CTF ch... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 160 次。
如何安装 Hexstrike?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install hexstrike」即可一键安装,无需额外配置。
Hexstrike 是免费的吗?
是的,Hexstrike 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Hexstrike 支持哪些平台?
Hexstrike 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Hexstrike?
由 Jay Lane(@jaylane)开发并维护,当前版本 v1.0.0。
推荐 Skills