← 返回 Skills 市场
171
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install threat-intel-v2
功能描述
Aggregates and analyzes open-source intelligence (OSINT) data from multiple sources to identify threats, validate indicators, and enrich security investigati...
安全使用建议
This skill will send any indicator you supply to external hosts (api.mkkpro.com / toolweb.in). Before installing or using it: 1) Verify the service owner and trustworthiness (homepage, source repo, contact, SLA). 2) Check the API docs to learn whether an API key is required and how data is authenticated and protected (TLS, headers). 3) Ask how submitted indicators are stored, shared, and retained (privacy/retention policy). 4) Test with non-sensitive indicators first. 5) Prefer skills that document required credentials and provide clear security/privacy policies; if you must use this, consider isolating calls, limiting autonomy, and monitoring outbound requests. Additional information that would raise confidence to 'high': a verifiable homepage/repo, documented authentication/security scheme in openapi.json, and a clear privacy/data-retention policy.
功能分析
Type: OpenClaw Skill
Name: threat-intel-v2
Version: 1.0.0
The skill bundle defines a Threat Intelligence Aggregator designed to query a remote API (api.mkkpro.com) for OSINT data such as IP reputation and malware associations. The documentation in SKILL.md and the API definition in openapi.json are consistent with the stated purpose and contain no evidence of malicious intent, data exfiltration, or prompt injection.
能力评估
Purpose & Capability
The SKILL.md describes a multi-source OSINT aggregator (including proprietary feeds) and lists external API endpoints and pricing, which is coherent with the stated purpose. However, there is no homepage/source repository and no declared authentication mechanism or credentials. Aggregating proprietary feeds typically requires upstream API keys or licenses; the absence of any required env vars or security/schema in the provided openapi.json is an inconsistency that reduces transparency about how the service obtains paid/proprietary data.
Instruction Scope
The instructions are an API description that points the agent to external endpoints (Kong route: https://api.mkkpro.com/security/threat-intel-v2 and API docs at https://api.mkkpro.com:8011/docs). Using the skill will cause whatever indicators you provide to be sent to those external hosts. The SKILL.md does not document authentication headers, rate-limiting behavior for anonymous use, or how submitted data is stored/retained—this is a privacy and data-exfiltration concern for sensitive indicators.
Install Mechanism
No install spec and no code files — instruction-only skill. This minimizes local persistence and filesystem risk; nothing is downloaded or executed locally by the skill package itself.
Credentials
No environment variables or primary credential are declared. That is safe for local secrets, but also unexpected given the pricing/tier information and claim of proprietary feed aggregation. Typically a user-facing aggregator API requires an API key (not declaring one is an opaque design decision). If the backend requires credentials, the SKILL.md should document how to provide them; if not, you should verify intended anonymous usage and any limits or data use policies.
Persistence & Privilege
The skill does not request always:true and does not attempt to modify agent/system configs. It is user-invocable and may be called autonomously (platform default), which increases blast radius if you allow autonomous runs, but that is standard and not in itself a red flag here.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install threat-intel-v2 - 安装完成后,直接呼叫该 Skill 的名称或使用
/threat-intel-v2触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of Threat Intelligence Aggregator.
- Aggregates and analyzes OSINT from multiple sources for threat identification and enrichment.
- Provides detailed indicator lookups including reputation score, threat level, geolocation, malware associations, and source attribution.
- POST /osint-lookup endpoint supports validation and enrichment of IPs, domains, emails, file hashes, and URLs.
- Offers tiered pricing plans including Free, Developer, Professional, and Enterprise.
元数据
常见问题
Threat Intel V2 是什么?
Aggregates and analyzes open-source intelligence (OSINT) data from multiple sources to identify threats, validate indicators, and enrich security investigati... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 171 次。
如何安装 Threat Intel V2?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install threat-intel-v2」即可一键安装,无需额外配置。
Threat Intel V2 是免费的吗?
是的,Threat Intel V2 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Threat Intel V2 支持哪些平台?
Threat Intel V2 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Threat Intel V2?
由 ToolWeb(@krishnakumarmahadevan-cmd)开发并维护,当前版本 v1.0.0。
推荐 Skills