Back to skill
Skillv1.0.0
VirusTotal security
Xss Detection And Exploitation · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 29, 2026, 12:46 PM
- Hash
- 382fe07a66774f159fce06e53db9bd015fff5067c0777917234d33941960f405
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: bookforge-xss-detection-and-exploitation Version: 1.0.0 The skill bundle 'bookforge-xss-detection-and-exploitation' provides an AI agent with a comprehensive framework for identifying and exploiting XSS vulnerabilities, including specific payloads for session hijacking and data exfiltration to external domains (e.g., attacker.net). While the SKILL.md documentation frames these activities as 'authorized security testing,' it equips the agent with high-risk offensive capabilities and advanced WAF bypass techniques. The presence of explicit instructions for exploitation and exfiltration, even for educational purposes, constitutes a significant attack surface for misuse.
- External report
- View on VirusTotal