← 返回 Skills 市场
91
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install linux-security-scanner
功能描述
Linux security auditing tool that checks SSH configuration, open/listening ports, firewall rules (ufw/iptables/nftables), failed login attempts, sudoers perm...
使用说明 (SKILL.md)
Linux Security Scanner
Script
scripts/security-audit.sh — the single entry point for all checks.
The script is self-contained, portable, and works on any modern Linux system. It auto-detects available tools (ss/netstat, ufw/iptables/nftables, journalctl) and gracefully skips unavailable ones.
Quick Start
Run a full audit:
bash scripts/security-audit.sh --all
Or with no arguments (same as --all):
bash scripts/security-audit.sh
Individual Checks
Run any single check by name:
| Command | What it checks |
|---|---|
--ssh |
PermitRootLogin, PasswordAuthentication, Port, Protocol in sshd_config |
--ports |
Listening TCP ports (ss or netstat) |
--firewall |
ufw status, iptables filter rules, nftables ruleset |
--failed-logins |
lastb output and journalctl SSH auth failures (last 24h) |
--sudoers |
Sudoers file permissions (must be 440), files present, NOPASSWD entries, full sudo access grants |
--world-writable |
World-writable files in /etc, /tmp, /var, /home, /opt (depth 3) |
--suid |
All SUID binaries, risk assessment, unusual path detection |
Example:
bash scripts/security-audit.sh --ssh --failed-logins
Full Audit Workflow
- Run
bash scripts/security-audit.sh --all - The script outputs a colorized report to stdout
- A structured markdown report is stored in the
$REPORTvariable (accessible within the same shell session) - For programmatic use, redirect output to a file
Common Findings & Recommendations
- SSH hardening: Disable root login, disable password auth, use key-only auth, change default port
- Firewall: Ensure only necessary ports are open; prefer deny-by-default
- Sudoers: Avoid NOPASSWD where possible; keep permissions at 440; audit who has full sudo access
- SUID: Review unusual SUID paths; minimize SUID binaries; check for known CVEs on common ones (pkexec, sudo, etc.)
- World-writable files: These are security risks — investigate why they're writable and restrict permissions
Notes
- Requires root/sudo for some checks (failed-logins reads /var/log/btmp, ss shows process info)
- Runs entirely in the shell — no external dependencies beyond standard Linux tools
- Respects permission boundaries — non-accessible checks are noted, not forced
安全使用建议
This skill looks appropriate for a local Linux security posture check. Before installing or running it, review the script, run it only on systems you administer, be cautious with sudo, and avoid sharing the report publicly because it may contain sensitive host configuration, usernames, IP addresses, and privilege information.
功能分析
Type: OpenClaw Skill
Name: linux-security-scanner
Version: 1.0.0
The bundle is a standard Linux security auditing tool that performs read-only checks on system configuration and logs. The script 'scripts/security-audit.sh' audits SSH settings, firewall rules, listening ports, sudoers permissions, and SUID binaries using native Linux commands without any evidence of data exfiltration, persistence mechanisms, or malicious intent.
能力评估
Purpose & Capability
The stated purpose matches the visible script: it checks SSH configuration, ports, firewall rules, failed logins, sudoers, world-writable files, and SUID binaries. These are sensitive host-security details, but they are expected for a Linux security scanner and appear read-only.
Instruction Scope
The skill is user-invocable and documents explicit commands. No hidden instruction override, forced autonomous behavior, or goal redirection is evident in the provided artifacts.
Install Mechanism
There is no install spec and the bundled script is visible, but the registry metadata lists the source as unknown and no homepage is provided, so users should review the script before running it, especially with sudo.
Credentials
The script is Linux-specific and uses standard Linux tools and paths, while the registry OS restriction is unset. This is a compatibility/proportionality note rather than suspicious behavior.
Persistence & Privilege
No persistence, background process, network transmission, or file mutation is shown. Some checks may require elevated privileges and can reveal sensitive local security configuration and login data.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install linux-security-scanner - 安装完成后,直接呼叫该 Skill 的名称或使用
/linux-security-scanner触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of linux-security-scanner.
- Provides a script to perform comprehensive security audits on Linux systems.
- Checks SSH configuration, open/listening ports, firewall rules, failed login attempts, sudoers permissions, world-writable files, and SUID binaries.
- Allows running either a full audit or specific individual checks via command-line flags.
- Outputs colorized reports and saves a structured markdown report for further use.
- Detects available tools and skips unsupported checks gracefully.
- Requires standard Linux utilities; no external dependencies needed.
元数据
常见问题
Linux Security Scanner 是什么?
Linux security auditing tool that checks SSH configuration, open/listening ports, firewall rules (ufw/iptables/nftables), failed login attempts, sudoers perm... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 91 次。
如何安装 Linux Security Scanner?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install linux-security-scanner」即可一键安装,无需额外配置。
Linux Security Scanner 是免费的吗?
是的,Linux Security Scanner 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Linux Security Scanner 支持哪些平台?
Linux Security Scanner 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Linux Security Scanner?
由 new(@laolaoqi)开发并维护,当前版本 v1.0.0。
推荐 Skills