← 返回 Skills 市场

IdentityMonitoringAgent

Name: IdentityMonitoringAgent
Author: assix

作者 Anthony Assi · GitHub ↗ · v1.0.4 · MIT-0

cross-platform ✓ 安全检测通过

129

总下载

当前安装

版本数

在 OpenClaw 中安装

/install identity-monitoring-agent

功能描述

An OSINT sentinel that monitors the public web for email exposure, username footprint, and identity leaks without API keys.

使用说明 (SKILL.md)

IdentityMonitoringAgent

This agent acts as a digital investigator. It scans the public web and platform recovery flows to find where personal data might be exposed.

Setup

Install the necessary OSINT libraries in your LXC environment:

pip install holehe sherlock-project googlesearch-python

Local Testing

Before using the agent via the UI, verify the logic directly on your DGX Spark terminal:

Test Email Scanning

python3 monitor.py --tool scan_email --target [email protected]

Test Username Tracking

python3 monitor.py --tool scan_username --target example_user

Test Web Dorking

python3 monitor.py --tool search_leaks --query "example_query"

Note: If registered_sites returns an empty list [], it indicates no hits were found on supported platforms or the service is temporarily rate-limited.

User Instructions

"Check if the email [email protected] is registered on any social platforms."
"Find all social media accounts associated with the username 'example_user'."
"Search the web for public mentions or leaks of the phone number 555-0123."

Tools

`scan_email`

Checks 120+ sites to see if an email is registered using forgotten password flows.

Inputs: email (string)
Call: python3 monitor.py --tool scan_email --target {{email}}

`scan_username`

Hunts for a specific username across 400+ social networks and platforms.

Inputs: username (string)
Call: python3 monitor.py --tool scan_username --target {{username}}

`search_leaks`

Uses advanced Google Dorks to find identifiers on leak sites, forums, and pastebins.

Inputs: query (string)
Call: python3 monitor.py --tool search_leaks --query "{{query}}"

安全使用建议

This skill appears to do what it says: run holehe and sherlock and perform Google dorks to look for exposed emails/usernames. Before installing, consider: run it in an isolated environment (container/VM) because it will perform network scans and install third-party pip packages; review the holehe and sherlock projects for safety and licensing; avoid scanning targets you don't own or have permission to probe (legal/terms-of-service risk); be aware Google scraping may be rate-limited or flagged; the code invokes subprocesses based on user input (it uses list-form subprocess calls, which avoids shell interpolation, but still will perform network actions you trigger), so only provide targets you intend to scan. Finally, the skill's source/homepage is unknown — if you need stronger trust, obtain the upstream repository or a publisher with an audit trail before widespread use.

功能分析

Type: OpenClaw Skill Name: identity-monitoring-agent Version: 1.0.4 The IdentityMonitoringAgent is a legitimate OSINT tool designed to check for email and username exposure using established libraries like 'holehe' and 'sherlock'. The implementation in 'monitor.py' uses secure subprocess handling (passing arguments as lists) to prevent shell injection, and the 'search_leaks' function uses standard Google dorking techniques. No evidence of malicious intent, data exfiltration, or prompt injection was found.

能力评估

✓ Purpose & Capability

Name/description (email/username/identity monitoring) match the actual requirements: python3 plus the OSINT tools holehe and sherlock and a Google-search library are exactly what the skill needs.

✓ Instruction Scope

SKILL.md and monitor.py instruct only to run holehe/sherlock and perform Google dork searches. The code does not read unrelated files, environment variables, or send results to any external endpoint beyond the standard network activity of the invoked tools and googlesearch.

ℹ Install Mechanism

There is no formal install spec (instruction-only). SKILL.md tells users to pip install holehe, sherlock-project, and googlesearch-python — expected for this functionality but this will install third-party packages on disk; verify those packages' provenance before installing.

✓ Credentials

No environment variables, credentials, or config paths are requested. The skill does not attempt to access unrelated secrets or system config.

✓ Persistence & Privilege

always is false and the skill does not request elevated or persistent platform privileges or modify other skills' configs. It runs on-demand and can be invoked by the agent as usual.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install identity-monitoring-agent
安装完成后，直接呼叫该 Skill 的名称或使用 /identity-monitoring-agent 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.4

IdentityMonitoringAgent v1.0.4 - Improved documentation with clear user instructions and tool descriptions. - Added setup steps for required OSINT libraries and local testing commands. - Detailed examples provided for email, username, and web leak checks. - Clarified input parameters and command-line usage for each tool.

v1.0.3

- Added setup instructions for installing required OSINT libraries. - Included a new Local Testing section with usage examples for direct terminal verification. - Clarified note about empty `registered_sites` results, explaining possible causes. - User instructions and tool descriptions remain unchanged.

v1.0.2

- Bumped version to 1.0.2. - No user-facing changes documented in SKILL.md. - Likely minor internal improvements or bug fixes in monitor.py.

v1.0.1

- Added SKILL.md with detailed usage instructions and feature descriptions. - Clarified available tools: scan_email, scan_username, and search_leaks. - Listed required dependencies (python3, holehe, sherlock) for operation. - Updated metadata and keyword tags for improved discoverability. - Incremented version to 1.0.1.

v1.0.0

Initial release of IdentityMonitoringAgent. - Monitors the public web for email, username, and personal identifier exposure without requiring API keys. - Supports scanning emails for platform registrations, checking usernames across social networks, and searching for leaks using Google Dorks. - Utilizes open-source tools (holehe and sherlock) for OSINT investigations. - Designed for privacy, security, and identity protection with clear user instructions.

元数据

Slug identity-monitoring-agent

版本 1.0.4

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 5

常见问题