{"id":44494232,"url":"https://github.com/backslash-security/Claw-Hunter","last_synced_at":"2026-02-16T13:00:15.179Z","repository":{"id":336827248,"uuid":"1148003063","full_name":"backslash-security/Claw-Hunter","owner":"backslash-security","description":"Claw Hunter is an open-source security tool (MDM) by Backslash Security, designed to detect, audit \u0026 secure OpenClaw/Moltbot shadow AI agents across macOS, Linux \u0026 Windows endpoints.","archived":false,"fork":false,"pushed_at":"2026-02-06T09:53:36.000Z","size":1451,"stargazers_count":33,"open_issues_count":1,"forks_count":4,"subscribers_count":2,"default_branch":"main","last_synced_at":"2026-02-06T17:43:05.036Z","etag":null,"topics":["clawdbot","itsec","itsecurity","mdm","openclaw","security","shadow-ai","shadow-ai-detector","vibe-coding"],"latest_commit_sha":null,"homepage":"https://www.backslash.security/","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/backslash-security.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-02-02T13:15:13.000Z","updated_at":"2026-02-06T16:14:40.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/backslash-security/Claw-Hunter","commit_stats":null,"previous_names":["backslash-security/claw-hunter"],"tags_count":null,"template":false,"template_full_name":null,"purl":"pkg:github/backslash-security/Claw-Hunter","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/backslash-security%2FClaw-Hunter","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/backslash-security%2FClaw-Hunter/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/backslash-security%2FClaw-Hunter/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/backslash-security%2FClaw-Hunter/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/backslash-security","download_url":"https://codeload.github.com/backslash-security/Claw-Hunter/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/backslash-security%2FClaw-Hunter/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29508734,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-16T09:05:14.864Z","status":"ssl_error","status_checked_at":"2026-02-16T08:55:59.364Z","response_time":115,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["clawdbot","itsec","itsecurity","mdm","openclaw","security","shadow-ai","shadow-ai-detector","vibe-coding"],"created_at":"2026-02-13T05:00:20.134Z","updated_at":"2026-02-16T13:00:15.170Z","avatar_url":"https://github.com/backslash-security.png","language":"Shell","funding_links":[],"categories":["Security","Security \u0026 Hardening"],"sub_categories":["Security Audit Tools","Security Tools"],"readme":"\u003cp align=\"center\"\u003e\n    \u003cpicture\u003e\n        \u003csource media=\"(prefers-color-scheme: light)\" srcset=\"./claw-white.png\" width=\"600\" alt=\"Claw Hunter\"\u003e\n        \u003cimg src=\"./claw-black.png\" alt=\"Claw Hunter\" width=\"600\"\u003e\n    \u003c/picture\u003e\n\u003c/p\u003e\n\n\u003ch1 align=\"center\"\u003e\n  🦞 Claw Hunter 🦞 by Backslash Security\n    \n[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)\n[![Bash](https://img.shields.io/badge/Bash-3.2+-green.svg)](https://www.gnu.org/software/bash/)\n[![PowerShell](https://img.shields.io/badge/PowerShell-5.1+-blue.svg)](https://docs.microsoft.com/en-us/powershell/)\n\n\u003c/h1\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003cstrong\u003e Let us guess, your developers are not running OpenClaw, are they? 👀 \u003c/strong\u003e\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003cb\u003eClaw Hunter\u003c/b\u003e is a discovery and risk-assessment tool for \u003cb\u003eOpenClaw\u003c/b\u003e (formerly known as Clawdbot and Moltbot) instances. It identifies \"Shadow AI\", audits agent privileges. It let's you (the user) ensure that your user endpoints, data and network are not compromised by unauthorized access.\n\u003c/p\u003e\n\n\n\u003cp align=\"center\"\u003e\n  \u003ca href=\"https://backslash.security/\"\u003e\n      \u003cpicture\u003e\n    \u003csource media=\"(prefers-color-scheme: light)\" srcset=\"./icon-white.png\" width=\"300\"\u003e\n    \u003cimg width=\"300\" alt=\"Backslash Security\" src=\"./icon-black.png\" \u003e\n  \u003c/picture\u003e\n  \u003c/a\u003e\n\u003c/p\u003e\n\n\n\n\n## 🛡️ Why it matters for Security Teams\n\nIn the 2026 landscape, autonomous agents like OpenClaw operate as high-privilege service accounts. While they boost productivity, they often bypass standard IAM policies, creating \"Shadow AI\" instances that can execute shell commands and move data across your network.\n\n**Claw Hunter** is purpose-built for **ITSec teams** to detect:\n\n* **Security Risks**: Shell access, filesystem write permissions, exposed gateways\n* **Credential Exposure**: Scans for potential secrets and API keys\n* **Integration Inventory:** Active agents, channels, and registry entries\n* **Configuration Issues**: Missing auth tokens, misconfigured services\n* **Installation Status**: CLI, config files, running processes\n\n\n## ✨ Core Capabilities\n\n* ✅ **System Agnostic Visibility:** macOS, Linux (bash 3.2+), Windows (PowerShell 5.1+)\n* ✅ **MDM-Ready**: Silent execution, proper exit codes, centralized logging\n* ✅ **Non-Intrusive**: Read-only operations, no system modifications\n* ✅ **Comprehensive Detection**: Installation, configuration, processes, secrets\n* ✅ **Structured Output**: JSON format for automation and SIEM integration\n* ✅ **Zero Dependencies**: Pure bash/PowerShell, optional `jq` for enhanced JSON\n  \n### MDM Integration\n- 🔒 Silent execution mode for automated deployment\n- 📊 Machine identification (hostname, serial number, timestamp)\n- 🎯 Security risk scoring (clean, warning, critical)\n- 📤 Upload results to central API endpoint\n- 🔐 Bearer token authentication support\n- 📝 Persistent logging to standard locations\n- ✅ Proper exit codes for automation\n\n### Exit Codes\n- `0`: No issues detected (clean)\n- `1`: Security issues or warnings found\n- `2`: OpenClaw not installed\n- `3`: Script execution error\n\n## 🚀 Quick Start\n\n### Interactive Mode (Manual Audit)\n\n**macOS/Linux:**\n```bash\n# Download and run\ncurl -O  https://raw.githubusercontent.com/backslash-security/Claw-Hunter/main/claw-hunter.sh\nchmod +x claw-hunter.sh\n./claw-hunter.sh\n```\n\n**Windows:**\n```powershell\n# Download and run\nInvoke-WebRequest -Uri  https://raw.githubusercontent.com/backslash-security/Claw-Hunter/main/claw-hunter.ps1 -OutFile claw-hunter.ps1\n.\\claw-hunter.ps1\n```\n\n### MDM Deployment (Automated)\n\n**Jamf Pro (macOS):**\n```bash\nsudo /path/to/claw-hunter.sh --mdm --upload-url https://your-api.com/audits --api-key-file /etc/openclaw-key\n```\n\n**Microsoft Intune (Windows):**\n```powershell\n.\\claw-hunter.ps1 --mdm --upload-url https://your-api.com/audits\n```\n\nSee [MDM Deployment Guides](docs/mdm-guides/) for platform-specific instructions.\n\n## 📖 Usage\n\n### Command-Line Options\n\n```bash\n./claw-hunter.sh [OPTIONS]\n\nOptions:\n  --json                   Print JSON output to terminal (stdout)\n  --json-path \u003cfile\u003e       Save JSON results to this file path\n  --mdm                    MDM mode: silent execution with JSON output\n  --upload-url \u003curl\u003e       Upload JSON results to this URL\n  --api-key-file \u003cfile\u003e    File containing API key for authentication\n  --log-file \u003cfile\u003e        Write logs to this file\n  -h, --help               Show help message\n\nMDM Mode:\n  Silent execution designed for automated deployment via MDM platforms.\n  - Suppresses terminal output (errors go to stderr)\n  - Writes JSON to /var/log/claw-hunter.json (Unix) or C:\\ProgramData\\claw-hunter.json (Windows)\n  - Logs to corresponding .log file\n  - Returns proper exit codes for automation\n```\n\n### Examples\n\n```bash\n# Interactive mode with terminal output\n./claw-hunter.sh\n\n# Save results to JSON file\n./claw-hunter.sh --json-path /tmp/audit-results.json\n\n# Print JSON to stdout\n./claw-hunter.sh --json\n\n# MDM deployment with upload\nsudo ./claw-hunter.sh --mdm --upload-url https://api.example.com/audits --api-key-file /etc/audit-key\n\n# MDM with custom paths\nsudo ./claw-hunter.sh --mdm --json-path /custom/audit.json --log-file /var/log/custom.log\n```\n\n## 📊 Output Format\n\n### Terminal Output (Interactive Mode)\n```\n==========================================\n🛡️  OPENCLAW SECURITY AUDIT: UNIX/MAC (v3)\n==========================================\n\n--- [ Detection ] ---\n✅ State Dir: /Users/john/.openclaw\n✅ Config: /Users/john/.openclaw/openclaw.json (found)\n✅ CLI: /usr/local/bin/openclaw (v1.2.3)\n\n--- [ Network \u0026 Gateway ] ---\n⚡ Gateway: ACTIVE (Port 18789 | PID: 12345)\n⚠️  Gateway auth token: NOT SET\n\n--- [ Privileges \u0026 Tools ] ---\n❗ RISK: Shell Access ENABLED\n✅ Filesystem Write: not flagged\n```\n\n### JSON Output (MDM Mode)\n```json\n{\n  \"mdm_mode\": true,\n  \"mdm_metadata\": {\n    \"hostname\": \"LAPTOP-ABC123\",\n    \"serial_number\": \"C02XYZ123456\",\n    \"timestamp\": \"2026-02-02T20:30:00Z\",\n    \"script_version\": \"3.0\"\n  },\n  \"security_summary\": {\n    \"risk_level\": \"warning\",\n    \"critical_issues\": 1,\n    \"warnings\": 2,\n    \"info_items\": 5\n  },\n  \"platform\": \"unix\",\n  \"os\": \"macos\",\n  \"cli_installed\": true,\n  \"cli_version\": \"1.2.3\",\n  \"gateway_running\": true,\n  \"gateway_token_set\": false,\n  \"risk_shell_access_enabled\": true,\n  \"secrets_found\": false\n}\n```\n\nSee [examples/](examples/) for complete output samples.\n\n## 🔧 Requirements\n\n### Bash Script (macOS/Linux)\n- Bash 3.2 or higher (pre-installed on macOS/most Linux)\n- Standard Unix utilities: `grep`, `awk`, `sed`, `find`\n- Optional: `jq` for enhanced JSON formatting\n- Root/sudo access for MDM mode (for serial number access)\n\n### PowerShell Script (Windows)\n- PowerShell 5.1 or higher (Windows 10/11)\n- No additional dependencies\n- Administrator privileges recommended for MDM mode\n\n## 🧪 Testing\n\nRun the test suite to verify functionality:\n\n```bash\n# Bash tests\ncd tests/bash\n./run-tests.sh\n\n# PowerShell tests\ncd tests/powershell\n.\\run-tests.ps1\n```\n\nSee [tests/README.md](tests/README.md) for detailed testing documentation.\n\n## 📝 License\nDistributed under the MIT License. see the [LICENSE](LICENSE) file for details.\n\n## ⚖️ Legal Disclaimer\n\n**Claw Hunter** is an independent security research tool. We are **not affiliated, associated, authorized, endorsed by, or in any way officially connected** with OpenClaw (formerly Moltbot) or any of its subsidiaries or its affiliates. The name OpenClaw as well as related names, marks, emblems, and images are registered trademarks of their respective owners.\n\n## ⚠️ Disclaimer\n\nThis tool performs read-only security audits and does not modify system configurations. Always test in a non-production environment first. The tool detects potential security issues but does not make judgments about your specific security requirements. \u003cbr/\u003e\n[Security Considerations](security.md) - What the audit detects and why\n\n\n## 🤝 Contact \u0026 Support\n\nFor security disclosures, enterprise support, or general inquiries, please reach out to the team.\n\n* 🌐 **Website:** [backslash.security](https://backslash.security/)\n\n* 💌 **Email:** support@backslash.security\n\n\n## 🩷 Acknowledgments\n\n* All the contributors making AI safer every day.\n* Maintained with ❤️ by the team at **Backslash Security**.\n* Special thanks to the security researchers documenting the evolution of autonomous agent persistence.\n* Don't forget to \u003cstrong\u003e Vibe Safely! \u003c/strong\u003e\n\n  \u003cp align=\"center\"\u003e\n    \u003cimg width=\"300\" alt=\"Backslash Security\" src=\"https://github.com/user-attachments/assets/b12edb57-6d0f-4070-8c52-142bc2d671a7\" /\u003e\n    \u003cimg width=\"300\" alt=\"Backslash Security\" src=\"https://github.com/user-attachments/assets/b12edb57-6d0f-4070-8c52-142bc2d671a7\" /\u003e\n  \u003c/p\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbackslash-security%2FClaw-Hunter","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbackslash-security%2FClaw-Hunter","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbackslash-security%2FClaw-Hunter/lists"}