ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

OSINT Social Analyzer

v1.0.0

Investigate a username across 1000+ social media platforms and websites using social-analyzer. Use this skill whenever the user wants to look up, investigate...

0· 413·1 current·1 all-time
by@guleguleguru
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill's name/description (username OSINT across 1000+ platforms) matches its contents: instructions to install and run the social-analyzer Python package, a shell wrapper, and a Chinese-platform Python script. Required binaries (python3, pip3) and included scripts are appropriate for the task.
Instruction Scope
SKILL.md directs the agent to install social-analyzer and run it (plus cn_lookup.py for Chinese platforms). The runtime instructions explicitly perform HTTP requests to public platform APIs and parse JSON; they do not attempt to read unrelated local files, system config, or environment variables. Note: SKILL.md advises the skill be used automatically for any username lookup; that trigger policy is broad but consistent with the described purpose.
Install Mechanism
No packaged install spec is embedded; SKILL.md instructs users to pip3 install social-analyzer (from PyPI). Installing a third‑party package via pip is expected for a Python wrapper but carries the usual supply-chain risk. The documentation recommends the --break-system-packages flag (a system-level install flag) which is unnecessary and riskier than using a virtualenv; otherwise no downloads from unknown personal servers or shorteners are used.
Credentials
The skill requests no environment variables, no credentials, and no config paths. All network calls target public platform endpoints (e.g., Bilibili, Zhihu, Weibo) or rely on the social-analyzer package—this is proportionate to the stated functionality.
Persistence & Privilege
The skill does not request always:true and does not modify other skills or system-wide settings. It runs on demand and requires no elevated privileges; autonomous invocation is allowed but is the platform default and not combined with other concerning privileges.
Assessment
This skill appears to do what it says: run social-analyzer and a small Chinese lookup script to query public profiles. Before installing or running: (1) Prefer creating a Python virtual environment rather than using pip with --break-system-packages; (2) review the social-analyzer package (its PyPI project and source repo) for supply-chain/trust concerns; (3) be aware the tool will make many automated HTTP requests (rate limits, CAPTCHAs, or IP blocks are possible), and ensure you have legal authorization to perform targeted investigations in your jurisdiction; (4) if you are uncomfortable with autonomous agents invoking this skill automatically, restrict invocation or require explicit user permission before running scans.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

Binspython3, pip3
latestvk978n963s33hw34tnts7wwt8cn8216h0osintvk978n963s33hw34tnts7wwt8cn8216h0securityvk978n963s33hw34tnts7wwt8cn8216h0social-mediavk978n963s33hw34tnts7wwt8cn8216h0usernamevk978n963s33hw34tnts7wwt8cn8216h0
413downloads
0stars
1versions
Updated 13h ago
v1.0.0
MIT-0
@guleguleguru
latestosintsecuritysocial-mediausername
Download

OSINT Social Analyzer Skill

Cross-platform username investigation using social-analyzer. Searches 1000+ platforms and returns a natural language summary of findings.

Setup (first run only)

pip3 install social-analyzer --break-system-packages

Verify it works:

python3 -m social-analyzer --username "testuser" --top 10 --output json --filter "good"

Running an Investigation

Standard lookup (recommended default)

python3 -m social-analyzer \
  --username "{USERNAME}" \
  --metadata \
  --output json \
  --filter "good" \
  --top 100

Deep lookup (slower, more thorough)

python3 -m social-analyzer \
  --username "{USERNAME}" \
  --metadata \
  --extract \
  --output json \
  --filter "good,maybe" \
  --top 300

Platform-specific lookup

# Specific websites
python3 -m social-analyzer --username "{USERNAME}" --websites "youtube twitter instagram tiktok github"

# By content type
python3 -m social-analyzer --username "{USERNAME}" --type "music"

# By country
python3 -m social-analyzer --username "{USERNAME}" --countries "us uk"

Multiple usernames (variants)

python3 -m social-analyzer --username "{NAME1},{NAME2},{NAME3}" --metadata --top 100

Parsing and Summarizing Results

After running the command, parse the JSON output and produce a conversational summary — do NOT dump raw JSON to the user.

What to extract from results

From each detected profile:

  • website — platform name
  • url — direct link
  • rate — confidence score (0–100)
  • status — "good" / "maybe" / "bad"
  • metadata.name — display name if available
  • metadata.bio — bio/description if available
  • metadata.followers — follower count if available

Summary format (conversational, natural language)

Structure the response like this:

找到 [N] 个账号,以下是主要发现:

**高置信度账号(rate ≥ 80):**
- GitHub (rate: 95): github.com/username — 显示名 "John",有 234 个 follower
- Twitter (rate: 88): twitter.com/username
- Instagram (rate: 82): instagram.com/username — 简介:摄影爱好者

**中等置信度(rate 50–79):**
- Reddit (rate: 65): reddit.com/u/username

共扫描了 100 个平台,[M] 个请求失败(网络超时等),不影响主要结果。

Confidence tiers

  • rate ≥ 80 → 高置信度,几乎确定是同一人
  • rate 50–79 → 中等,值得关注但需人工确认
  • rate < 50 → 低,通常跳过,除非用户要求显示全部

Handling Edge Cases

No results found:

在扫描的 100 个平台中未找到该用户名的公开账号。可能原因:用户名拼写不同、账号已删除、或平台设置了隐私保护。

Command takes too long (>5 min): Reduce scope: --top 50 or specify --websites explicitly.

pip install fails:

pip3 install social-analyzer
# or
pip install social-analyzer --user

Rate limiting from platforms: Some platforms block rapid scanning. Use --mode slow for more polite requests:

python3 -m social-analyzer --username "{USERNAME}" --mode slow --top 50

Privacy & Ethics Reminder

This tool only accesses publicly available information.

Always remind the user:

  • Results are public data only — no private messages, emails, or passwords
  • Intended for legitimate use: self-auditing, security research, journalism, law enforcement support
  • Do not use to stalk, harass, or violate anyone's privacy
  • Different jurisdictions have different laws around OSINT — use responsibly

Include a one-line reminder at the end of every investigation summary:

⚠️ 以上均为公开信息,请合法合理使用。

Chinese Platform Lookup (cn_lookup.py)

For Chinese social media platforms, use the dedicated script instead of social-analyzer.

Supported platforms

平台覆盖情况备注
Bilibili 哔哩哔哩✅ 用户名搜索 + 主页信息最可靠
知乎 Zhihu✅ 用户名/URL token 搜索需精确匹配
微博 Weibo⚠️ 移动端降级搜索仅存在性检测
小红书 / 抖音 / 微信❌ 不支持强制登录,无公开接口

Running cn_lookup

python3 skills/osint-social/scripts/cn_lookup.py "{USERNAME}"

When to use cn_lookup vs social-analyzer

  • User mentions Chinese platforms, Bilibili, 知乎, 微博 → use cn_lookup.py
  • User mentions username is Chinese or used on Chinese internet → run both
  • General global lookup → use social-analyzer only

Combined workflow (recommended for thorough investigation)

# Step 1: Global platforms
python3 -m social-analyzer --username "{USERNAME}" --metadata --output json --filter "good" --top 100

# Step 2: Chinese platforms
python3 skills/osint-social/scripts/cn_lookup.py "{USERNAME}"

Then combine and summarize both outputs together in a single natural language response.

Reference Files

  • references/platforms.md — Notable platforms covered and their categories
  • references/platforms.md — Notable platforms covered and their categories
  • scripts/run_osint.sh — Shell wrapper for global platform lookup
  • scripts/cn_lookup.py — Chinese platform lookup (Bilibili, Zhihu, Weibo)

Comments

Loading comments...