Claude Skill

imbue-bit/OpenClaw-PwnKit

OpenClaw-PwnKit is a Python exploit tool that gains a root shell on almost any OpenClaw host machine via privilege escalation. Ideal for penetration testing and security research.

Overview

Stars287
Forks40
LanguagePython
Last pushed2026-03-09
Last synced2026-07-03
View on GitHub

Repository

Ownerimbue-bit
RepositoryOpenClaw-PwnKit
Full nameimbue-bit/OpenClaw-PwnKit
Repo ID1,175,638,196

Install this Skill

git clone https://github.com/imbue-bit/OpenClaw-PwnKit.git

Registry

Typeopenclaw_skill
Quality score75/100
Verificationreadme_parsed
Last verified2026-06-17
Platforms
ClaudeOpenClaw
Capabilities
memorysearchimageterminal
Detected files
README.mdrequirements.txt
Config keys
OPENAI_API_KEY
Install methods
  • git clone https://github.com/imbue-bit/OpenClaw-PwnKit.git
  • pip install -r requirements.txt

Summary

OpenClaw-PwnKit is a Python-based exploit tool that leverages a privilege escalation vulnerability to gain a root shell on almost any OpenClaw host machine.

Chinese description

获取几乎所有OpenClaw宿主机的shell权限。

Key features

  • Python-based exploit for OpenClaw hosts
  • Privilege escalation to root shell
  • Broad compatibility with OpenClaw systems
  • Lightweight and easy to deploy

Use cases

  • Penetration testing on OpenClaw environments
  • Security research and vulnerability assessment
  • Red team exercises targeting OpenClaw hosts
  • Educational demonstration of privilege escalation

README excerpt

<div align="center"> <img src="./meta/title.png" /> # OpenClaw-PwnKit **Black-Box Adversarial Attacks on LLM Agent Tool-Calling via CMA-ES** [![Python 3.10+](https://img.shields.io/badge/Python-3.10%2B-3776AB?logo=python&logoColor=white)](https://www.python.org/) [![License: GPL v3](https://img.shields.io/badge/License-GPLv3-blue.svg)](https://www.gnu.org/licenses/gpl-3.0) [![Paper](https://img.shields.io/badge/Paper-Coming%20Soon-yellow.svg)](#citation) [![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg)](https://github.com/imbue-bit/OpenClaw-PwnKit/pulls) *A research framework demonstrating that derivative-free optimization in token embedding space can bypass LLM safety alignment and achieve Remote Code Execution (RCE) through adversarial tool-call hijacking.* </div> --- ## Table of Contents - [Abstract](#abstract) - [Threat Model](#threat-model) - [Method Overview](#method-overview) - [Architecture](#architecture) - [Installation](#installation) - [Configuration](#configuration) - [Usage](#usage) - [Key Parameters](#key-parameters) - [Compute Requirements](#compute-requirements) - [Ethics and Responsible Disclosure](#ethics-and-responsible-disclosure) - [Citation](#citation) - [License](#license) ## Abstract As Large Language Models (LLMs) are increasingly augmented with tool-calling capabilities, LLM Agents are becoming the backbone of autonomous systems. However, RLHF-based safety alignment optimizes for semantic-level behavioral constraints but does not explicitly defend against adversarial perturbations in the continuous embedding space. This work exposes a critical security threat against closed-source frontier models (GPT-4, Claude 3, etc.): by injecting seemingly nonsensical adversarial triggers, an attacker can induce **advers

Topics

No topics yet.

Explore more

Data from GitHub. Synced on 2026-07-03