OpenClaw Egress

Network data loss prevention for OpenClaw, Claude Code, and any Agent Skills-compatible tool.

Maps every external connection your skills could make. Flags exfiltration endpoints, suspicious domains, and network function calls.

Want automated blocking? Upgrade to Pro — blocking, quarantine, and URL allowlist enforcement. Get Pro access.

Install

git clone https://github.com/AtlasPA/openclaw-egress.git
cp -r openclaw-egress ~/.openclaw/workspace/skills/

Usage

# Full network scan
python3 scripts/egress.py scan

# Skills-only scan
python3 scripts/egress.py scan --skills-only

# List all external domains
python3 scripts/egress.py domains

# Quick status
python3 scripts/egress.py status

What It Detects

• Data exfiltration — Base64/hex payloads in URL parameters
• Sharing services — Pastebin, transfer.sh, 0x0.st, file.io
• Request catchers — ngrok, requestbin, pipedream, beeceptor
• Dynamic DNS — duckdns, no-ip, dynu, freedns
• URL shorteners — bit.ly, tinyurl, t.co, goo.gl
• IP endpoints — Direct IP address connections
• Suspicious TLDs — .xyz, .tk, .ml, .ga, .cf, .top
• Network code — urllib, requests, httpx, aiohttp, curl, wget, fetch
• Webhook callbacks — /webhook, /callback, /hook, /beacon endpoints

Free vs Pro

Requirements

• Python 3.8+
• No external dependencies (stdlib only)
• Cross-platform: Windows, macOS, Linux

License

MIT