offensive-osint

Provides a comprehensive toolkit for authorized external red-team and bug-bounty reconnaissance, including probes, wordlists, and discovery techniques.

Install this skill

56/100

Security score

The offensive-osint skill was audited on May 29, 2026 and we found 12 security issues across 3 threat categories, including 2 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

high line 99

Ngrok tunnel reference

SourceSKILL.md

99	\| `secret-patterns.md` \| 48-pattern secret-regex catalog (AWS, GCP, GitHub PATs, Stripe, Slack, JWT, private keys, Anthropic/OpenAI/HuggingFace, Cloudflare, DigitalOcean, npm, PyPI, Docker Hub, Atlass

high line 259

Ngrok tunnel reference

SourceSKILL.md

259	- v2.1 (2026-04-27) — comprehensive expansion based on 32-test smoke-test gap analysis. Added: copy-paste curl probes for every check (§16.13), email security analysis with SPF/DMARC/DKIM/BIMI/MTA

medium line 182

Access to .env file

SourceSKILL.md

182	\| .env exposed \| "Exposed .env on {host} — grep for `_KEY`, `_SECRET`, `_TOKEN`, `_PASSWORD`; validate all credentials read-only via §23 validators." \|

low line 64

External URL reference

SourceSKILL.md

64	- [OSINT Bookmarks](https://tools.myosint.training/) — comprehensive bookmarks.

low line 65

External URL reference

SourceSKILL.md

65	- [OSINT Framework](https://osintframework.com/) — tool/resource directory.

low line 66

External URL reference

SourceSKILL.md

66	- [IntelTechniques Tools](https://inteltechniques.com/tools/) — investigative suite.

low line 67

External URL reference

SourceSKILL.md

67	- [Bellingcat Toolkit](https://www.bellingcat.com/resources/2024/09/24/bellingcat-online-investigations-toolkit/) — investigative journalism.

low line 69

External URL reference

SourceSKILL.md

69	- [Google Dorks](https://dorksearch.com/) — efficient Google searching.

low line 70

External URL reference

SourceSKILL.md

70	- [Distributed Denial of Secrets](https://ddosecrets.com/) — leaked datasets.

low line 71

External URL reference

SourceSKILL.md

71	- [Country-Specific Resources](https://digitaldigging.org/osint/) — country-targeted OSINT.

low line 179

External URL reference

SourceSKILL.md

179	\| Open RTDB Firebase \| "Open Firebase RTDB at https://{project}.firebaseio.com/.json — read everything, then test write at `/<random-key>.json` with PUT to gauge ACL scope." \|

low line 191

External URL reference

SourceSKILL.md

191	\| K8s API anonymous \| "Kubernetes API on {host}:6443 with anonymous-auth — `kubectl --server=https://{host}:6443 --insecure-skip-tls-verify get pods --all-namespaces`." \|

Scanned on May 29, 2026

View Security Dashboard

Installation guide →

Rate this skill

Categorydevelopment

UpdatedJune 15, 2026

openclaw api testing security-engineer ml-ai-engineer data-analyst development data analytics

AKasem1/claude-bug-bounty