← 返回 Skills 市场
Ultimate Freedom Protocol
作者
Biogod2020
· GitHub ↗
· v9.0.0
· MIT-0
312
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install ultimate-freedom-protocol
功能描述
Ultimate Web Freedom Protocol (v9.0.0). Leverages 'Protocol Phantom' (curl_cffi kernel-level TLS impersonation) to bypass DataDome, Cloudflare, and Bilibili....
安全使用建议
This package is explicitly designed to bypass WAFs and to take low-level control of local browser instances (CDP takeovers, driver injection, and tunneling). That behavior is coherent with its description but is high-risk: it opens network ports, creates local relays/sockets, writes in user home directories, and includes 'nuclear' operations gated only by environment variables or local lockfiles. Before installing or running: (1) do not run on a production or shared host — isolate it in a VM or disposable container with no sensitive credentials; (2) review and understand any scripts that start daemons, bind 0.0.0.0, or use CDP; change remote-debugging-address so it only binds to localhost if you must run; (3) verify provenance and author identity — the package has no homepage and an unknown source; (4) remove or sandbox any scripts that open relays or accept incoming connections; (5) if you need only benign scraping, consider simpler, well-audited libraries instead. Additional information that would raise confidence: an authoritative upstream repo/homepage, a reproducible, minimal install process (no daemonization), explicit manifest of all runtime effects, and proof that remote endpoints are never bound to non-loopback interfaces.
功能分析
Type: OpenClaw Skill
Name: ultimate-freedom-protocol
Version: 9.0.0
The bundle provides advanced web scraping tools designed to bypass anti-bot protections (DataDome, Cloudflare) using 'Protocol Phantom' (curl_cffi) and DrissionPage. It contains several high-risk components, including a TCP relay (python_relay.py) that forwards the Chrome DevTools Protocol (CDP) port, scripts for raw CDP takeover (force_takeover.py, nuclear_option.py), and shell scripts (daemon_chrome_v2.sh) that expose the browser's remote debugging port on 0.0.0.0. While the stated intent is scraping, the inclusion of 'Nuclear' options, network listeners, and complex custom 'security' wrappers using Unix Domain Sockets (sota_core.py) creates a significant attack surface. The presence of hardcoded user paths (/home/jiahao/) and references to external VPS IPs (198.23.155.120) further indicates a lack of standard security hygiene.
能力评估
Purpose & Capability
Name/description claim WAF/anti-bot bypass; code files and SKILL.md implement exactly that (curl_cffi impersonation, browser/CDP takeover, driver injection, tunneling). Requiring google-chrome-stable and xvfb-run is consistent with the toolkit's browser-based fallback. However, some requested capabilities (opening raw CDP takeovers, UDS handshake-based gating, and remote debugging exposed to 0.0.0.0) go beyond ordinary scraping and enable local takeover/remote control scenarios.
Instruction Scope
SKILL.md and scripts instruct the agent to: start Chrome with remote-debugging-address=0.0.0.0, spawn a local relay, bind sockets, accept CDP connections and perform 'takeover' and 'driver injection', read/write files under user home and /tmp, and start persistent/daemon processes. These actions expand scope well beyond simple data retrieval and permit local-privilege or cross-namespace network bridging.
Install Mechanism
Registry metadata claims 'instruction-only' yet the bundle contains 29+ script files. There is no install spec (no controlled package install), so runtime execution will run bundled scripts directly. The lack of an install step combined with many executable scripts is an operational inconsistency that increases risk (files will run without an explicit, reviewed install).
Credentials
Manifest declares no required env vars, but scripts reference environment-based safety gates (SOTA_NUCLEAR_CONFIRMED), DBUS session variables, and require/assume file tokens at ~/.openclaw/tmp/sota_active.lock and hardcoded user paths (/home/jiahao). The skill also unwraps network tunnels and binds ports. The skill requests no external API keys, but needs broad local environment access which is not declared or gated clearly.
Persistence & Privilege
Multiple scripts and a shell daemon attempt to start background services (xvfb/chrome, python_relay daemon via nohup), create sockets (/tmp/.sota_auth.sock), open TCP ports (9222/9223), and write files into user directories. Although some scripts include self-destruct/timeouts, the combination of daemonization and exposing remote-debugging on 0.0.0.0 is a significant privilege and persistence risk if run on a multi-tenant host.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install ultimate-freedom-protocol - 安装完成后,直接呼叫该 Skill 的名称或使用
/ultimate-freedom-protocol触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v9.0.0
V9.0.0 ARCHITECTURAL REVOLUTION: Integrated 'Protocol Phantom' (curl_cffi) as the primary offensive engine. Successfully bypassed Bilibili 412 and DataDome. Unified the toolkit under a protocol-first strategy, making server-side scraping truly undetectable.
元数据
常见问题
Ultimate Freedom Protocol 是什么?
Ultimate Web Freedom Protocol (v9.0.0). Leverages 'Protocol Phantom' (curl_cffi kernel-level TLS impersonation) to bypass DataDome, Cloudflare, and Bilibili.... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 312 次。
如何安装 Ultimate Freedom Protocol?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install ultimate-freedom-protocol」即可一键安装,无需额外配置。
Ultimate Freedom Protocol 是免费的吗?
是的,Ultimate Freedom Protocol 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Ultimate Freedom Protocol 支持哪些平台?
Ultimate Freedom Protocol 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Ultimate Freedom Protocol?
由 Biogod2020(@biogod2020)开发并维护,当前版本 v9.0.0。
推荐 Skills