Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/codevalve/openbeak

The open-source white-hat predator that hunts malicious Claw deployments.
https://github.com/codevalve/openbeak

Last synced: 3 months ago
JSON representation

The open-source white-hat predator that hunts malicious Claw deployments.

Awesome Lists containing this project

README 

          
# OpenBeak: Macroctopus Agentaculum



**The open-source white-hat predator that hunts malicious OpenClaw deployments.**



While OpenClaw has exploded in popularity as a powerful open-source AI agent platform, it is increasingly being abused by spammers, hackers, and ne’er-do-wells to create hidden “gates,” backdoors, and automated abuse infrastructure.



OpenBeak is the natural countermeasure — inspired by the real-world **Māori octopus** (*Macroctopus maorum*), one of the most effective lobster hunters in the ocean.



Just as the octopus uses its flexible tentacles to probe deep into crevices and traps, then delivers a precise, crushing strike with its powerful beak, OpenBeak intelligently searches networks, slips into exposed or misconfigured OpenClaw instances, and neutralizes threats quietly and effectively.



Written in **Go** for high performance, excellent concurrency (perfect for multi-tentacle probing), and easy distribution as static binaries.



## Project Name Breakdown



- **OpenBeak** — The main tool: clean, memorable, and focused on the “finishing move.”

- **Macroctopus Agentaculum** — The digital agent powering it. A playful pseudo-Latin nod to *Macroctopus maorum* + *tentaculum* (Latin for “little feeler/probe”).



**Tagline:**  

*Slips in silently. Probes every crevice. Crushes malicious claws.*



## Features (Planned / In Progress)



- **Stealthy Discovery** — Fast network and API scanning for exposed OpenClaw gateways, misconfigured instances, and suspicious agent deployments.

- **Tentacle Probing** — Highly concurrent modules (Agentaculum mode) that reach into hidden ports, APIs, webhooks, and configurations with minimal noise.

- **Precision Neutralization** — Safely disable rogue skills, revoke excessive permissions, patch common misconfigurations, or isolate threats.

- **Mitigation & Reporting** — Generate clean JSON/text reports, integrate with SIEM/SOAR tools, and support automated remediation where authorized.

- **White-Hat First** — Built for authorized security teams, red/blue/purple teams, and researchers. Always respect scope and legal boundaries.

- **Octopus Intelligence** — Modular plugin architecture, extensible via Go packages.



## Why Go?



- Blazing-fast concurrent scanning (tentacles working in parallel)

- Single static binary — easy to deploy anywhere

- Excellent networking and security libraries

- Memory safety and performance ideal for long-running threat hunting



## Building & Contributing



We welcome contributions from security researchers, Go enthusiasts, and octopus fans.



See [CONTRIBUTING.md](CONTRIBUTING.md) for guidelines, code style, and how to add new “tentacle” modules.



## License



Licensed under the **GNU Affero General Public License v3.0 (AGPL-3.0)**.  

This is a strong copyleft license that encourages sharing improvements while making it difficult for the code to be used in closed-source commercial products.



See the [LICENSE](LICENSE) file for the full text.



## Disclaimer



OpenBeak is intended **only** for authorized security testing and defensive operations on systems you own or have explicit permission to scan. Unauthorized use is illegal and against the spirit of the project.



---



**Inspired by nature’s most clever predator.**  

🐙 **Macroctopus Agentaculum** — reaching where claws hide.