ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

VMware Esxi Hardening

Professional VMware ESXi 8.0 security configuration generator that produces hardened configuration files based on industry best practices.

MIT-0 · Free to use, modify, and redistribute. No attribution required.
0 · 12 · 0 current installs · 0 all-time installs
byToolWeb@krishnakumarmahadevan-cmd
MIT-0
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name and description (ESXi hardening config generator) match the provided OpenAPI spec and SKILL.md: the skill is an API wrapper that generates configuration files. However the skill has no declared homepage/source, and the SKILL.md references external domains (toolweb.in, api.mkkpro.com) without a clear declared server in the openapi.json; this gap in provenance is noteworthy but not conclusive of malice.
Instruction Scope
The instructions describe HTTP endpoints, request/response shapes, and example payloads. They do not instruct the agent to read local files, environment variables, or other system state, nor to transmit arbitrary system data — the runtime scope is limited to sending user-supplied hardening options and receiving generated files.
Install Mechanism
This is an instruction-only skill with no install spec and no bundled code; nothing is written to disk by the skill itself. That lowers the installation risk.
!
Credentials
The SKILL.md includes pricing and references to external API hosts, but the skill declares no required environment variables or primary credential. If the underlying API requires an API key or account, the absence of declared credentials is a discrepancy. Also, external endpoints will receive data you send — the skill does not specify what data might be logged or retained by the service.
Persistence & Privilege
The skill does not request persistent or elevated platform privileges (always is false), and it does not ask to modify other skills or system configurations. Autonomous invocation is allowed (platform default) but not combined with other high-risk indicators here.
What to consider before installing
This skill appears to call an external API to generate ESXi hardening configs and otherwise stays within its stated scope, but there are gaps you should check before installing: 1) Vendor provenance — the skill has no verified homepage/source; confirm the vendor (toolweb.in / api.mkkpro.com) and reputation. 2) Authentication — pricing implies a paid API; ask whether an API key or account is required and whether you must supply credentials (the skill declares none). 3) Data exposure — verify what request data the service logs or retains and avoid sending real production secrets or exact environment details until you trust the provider. 4) Network egress — installing/using this skill will involve outbound requests to third‑party hosts; ensure your environment policy allows that. 5) Test safely — exercise the skill with non-production or synthetic data and review returned configuration files before applying them to live systems. If the vendor or auth details remain unclear, treat the skill as untrusted.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.0.0
Download zip
latestvk97048kg6mgd8sv1tkwafdvqsx83yv09

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

SKILL.md

Overview

The VMware ESXi Security Hardening Tool is a specialized API service designed to generate enterprise-grade security hardening configurations for VMware ESXi 8.0 environments. Built for infrastructure security professionals and system administrators, this tool automates the creation of compliant security configuration files that align with industry hardening standards and security frameworks.

The tool provides a comprehensive approach to ESXi security by allowing users to select specific hardening options and generate corresponding configuration outputs. This eliminates manual configuration errors and ensures consistent application of security policies across virtualization infrastructure. The service supports flexible hardening profiles, enabling organizations to tailor security posture based on their specific threat models and compliance requirements.

Ideal users include infrastructure teams managing VMware environments, security professionals implementing hardening standards, organizations pursuing compliance certifications, and managed service providers standardizing client deployments.

Usage

Request Example:

{
  "sessionId": "sess_abc123xyz789",
  "userId": 42,
  "timestamp": "2024-01-15T10:30:00Z",
  "hardeningOptions": {
    "firewall": ["enable_strict_rules", "disable_ssh_default"],
    "authentication": ["enforce_strong_passwords", "enable_mfa"],
    "logging": ["enable_syslog", "audit_all_changes"],
    "services": ["disable_unnecessary_services", "lockdown_mode"]
  }
}

Response Example:

{
  "configId": "config_20240115_103000",
  "status": "success",
  "timestamp": "2024-01-15T10:30:15Z",
  "hardeningProfile": {
    "firewall": {
      "enable_strict_rules": "applied",
      "disable_ssh_default": "applied"
    },
    "authentication": {
      "enforce_strong_passwords": "applied",
      "enable_mfa": "applied"
    },
    "logging": {
      "enable_syslog": "applied",
      "audit_all_changes": "applied"
    },
    "services": {
      "disable_unnecessary_services": "applied",
      "lockdown_mode": "applied"
    }
  },
  "configurationFiles": {
    "esxi_hardening.yml": "base64_encoded_content",
    "firewall_rules.conf": "base64_encoded_content",
    "audit_policy.conf": "base64_encoded_content"
  },
  "summary": "Security hardening configuration generated with 8 policies applied"
}

Endpoints

GET /

Health Check Endpoint

Returns the health status of the API service.

Method: GET

Path: /

Parameters: None

Response:

  • Status: 200 OK
  • Content-Type: application/json
  • Body: Health status object

POST /api/esxi/hardening/generate

Generate ESXi Hardening Configuration

Generates VMware ESXi security hardening configuration files based on selected hardening options.

Method: POST

Path: /api/esxi/hardening/generate

Parameters:

NameTypeRequiredDescription
hardeningOptionsobjectYesKey-value map where keys are hardening categories and values are arrays of specific hardening options to apply
sessionIdstringYesUnique identifier for the current session; used for tracking and audit purposes
userIdinteger | nullNoOptional user identifier for associating the configuration with a specific user account
timestampstringYesISO 8601 formatted timestamp indicating when the request was generated

Request Body Schema:

{
  "hardeningOptions": {
    "category1": ["option1", "option2"],
    "category2": ["option3"]
  },
  "sessionId": "string",
  "userId": 0,
  "timestamp": "string"
}

Response:

  • Status: 200 OK on success
  • Status: 422 Unprocessable Entity on validation error
  • Content-Type: application/json
  • Body: Configuration object with generated files and applied policies

GET /api/esxi/hardening/options

Get Available Hardening Options

Retrieves all available hardening options that can be applied through the generation endpoint.

Method: GET

Path: /api/esxi/hardening/options

Parameters: None

Response:

  • Status: 200 OK
  • Content-Type: application/json
  • Body: Object containing all available hardening categories and their respective options

Pricing

PlanCalls/DayCalls/MonthPrice
Free550Free
Developer20500$39/mo
Professional2005,000$99/mo
Enterprise100,0001,000,000$299/mo

About

ToolWeb.in - 200+ security APIs, CISSP & CISM, platforms: Pay-per-run, API Gateway, MCP Server, OpenClaw, RapidAPI, YouTube.

References

Files

2 total
Select a file
Select a file to preview.

Comments

Loading comments…