Skills Plugins Jobs Pricing
← Back to Plugins
Tools

PRISM

Yenn503 By Yenn503 ⭐ 4 stars 👁 21 views ▲ 0 votes

OpenClaw-native security-team plugin for deterministic, evidence-first authorized assessments (bug bounty, pentest, red/purple/blue, CTS, lab).

GitHub

Install

openclaw plugins install --link

Configuration Example

{
  "action": "tools.plan",
  "payload": {
    "profile": "purple-team",
    "platform": "linux"
  }
}

README

# PRISM — OpenClaw Security-Team Integration Layer

<p align="center">
  <img src="assets/prism-hero.jpg" alt="PRISM" width="760" />
</p>

<p align="center">
  <strong>Deterministic, evidence-first, authorization-gated red-team workflows inside OpenClaw.</strong>
</p>

<p align="center">
  <a href="https://github.com/Yenn503/PRISM"><img src="https://img.shields.io/github/stars/Yenn503/PRISM?style=for-the-badge" alt="Stars"></a>
  <a href="https://github.com/Yenn503/PRISM/commits/main"><img src="https://img.shields.io/github/last-commit/Yenn503/PRISM?style=for-the-badge" alt="Last commit"></a>
  <a href="https://docs.openclaw.ai"><img src="https://img.shields.io/badge/OpenClaw-compatible-22c55e?style=for-the-badge" alt="OpenClaw compatible"></a>
</p>

PRISM is an **OpenClaw-native plugin layer** for authorized security testing.

It gives any OpenClaw user (or bot) a clean, deterministic security workflow without forking OpenClaw runtime: scope/authorization preflight, evidence-gated findings, scenario scoring, replay drift checks, and report generation — all with a live PRISM page in Gateway Control UI. The goal is simple: production-grade assurance and auditability for bug bounty, pentest, red/purple/blue team, CTS, and lab operations.

---

## TL;DR

1. Install once:
   ```bash
   ./scripts/wire_openclaw_prism_layer.sh
   ```
2. In chat, ask your agent to run `prism-redteam` with explicit authorization + scope.
3. Open Gateway Control UI and use the **PRISM** sidebar for live status.

---

## Quick links

- [Documentation Index](docs/INDEX.md)
- [OpenClaw Layer Guide](docs/OPENCLAW_PRISM_LAYER.md)
- [PRISM Control Standard v1](docs/PRISM_CONTROL_STANDARD_V1.md)
- [PRISM Assurance Contract](docs/PRISM_ASSURANCE_MODULE_CONTRACT.md)
- [GitHub Repository](https://github.com/Yenn503/PRISM)
- [DeepWiki Mirror](https://deepwiki.com/Yenn503/PRISM)

---

## Install (recommended, ~1 minute)

```bash
git clone https://github.com/Yenn503/PRISM.git
cd PRISM
./scripts/wire_openclaw_prism_layer.sh
```

This one command:
1. installs + enables the `prism-redteam` plugin,
2. patches Control UI to add a **PRISM** sidebar page,
3. restarts gateway,
4. verifies plugin load.

Success check (you’re good if all true):
- `openclaw plugins info prism-redteam` shows **loaded**
- Control UI sidebar shows **PRISM**
- `prism.policy.preflight` returns allow/deny with clear violations/warnings

Plugin-only path (skip UI patch):

```bash
PRISM_SKIP_UI_PATCH=1 ./scripts/wire_openclaw_prism_layer.sh
```

---

## Quick usage examples

After install, tell your OpenClaw agent:

```text
Use prism-redteam profile bug-bounty. Confirm authorization and scope, run deterministic evidence-first phases, and produce replay-ready findings only.
```

For lab workflows:

```text
Use prism-redteam profile lab for this HTB/CTF target. Keep strict phase logs and finish with replay steps + next actions.
```

---

## 2026 standards + team workflows

PRISM 1.0.0 is aligned to current operations across red/purple/blue and pentest workflows.

- Baseline mapping and gap analysis: [Team Workflows & Standards 2026](docs/TEAM_WORKFLOWS_2026.md)
- Canonical docs hub: [Documentation Index](docs/INDEX.md)

---

## What PRISM adds to OpenClaw

### Gateway RPC methods

- `prism.dashboard`
- `prism.policy.preflight`
- `prism.evidence.pack`
- `prism.scenario.catalog`
- `prism.scenario.run`
- `prism.replay.run`
- `prism.report.generate`
- `prism.tools.catalog`
- `prism.tools.plan`
- `prism.doctor`
- `prism.dashboard.reset`

### Agent tool

- `prism_redteam`
  - actions: `status`, `policy.preflight`, `evidence.pack`, `scenario.catalog`, `scenario.run`, `replay.run`, `report.generate`, `tools.catalog`, `tools.plan`

### Plugin chat commands

- `/prism-status`
- `/prism-doctor`
- `/prism-tools`

---

## Control UI (PRISM sidebar)

Open Gateway Control UI (usually `http://127.0.0.1:18789/`) and click **PRISM** in sidebar.

The panel shows live:
- mode/profile state,
- method activity,
- recent preflights,
- recent evidence gates,
- recent scenario runs,
- recent artifacts written.

If PRISM sidebar is missing:

```bash
./scripts/patch_openclaw_control_ui_prism.sh
openclaw gateway restart
```

Rollback UI patch:

```bash
./scripts/unpatch_openclaw_control_ui_prism.sh
openclaw gateway restart
```

---

## Plugin config (important)

In `plugins.entries.prism-redteam.config`:

- `mode`: `strict` | `advisory`
- `defaultProfile`: profile default (`bug-bounty`, `pentest`, `red-team`, `purple-team`, `blue-team`, `cts`, `lab`)
- `requireAuthorization`: require explicit authorization statement in PRISM checks
- `strictToolBlocking`: if true, strict mode can block non-tagged tool calls
- `persistArtifacts`: persist JSON/MD artifacts for replay/audit
- `artifactDir`: artifact output path (default `.prism/runs`)

### Tool-pack installer planning

PRISM now includes workflow tool-pack planning (catalog + install plans), surfaced in both RPC/tool APIs and the PRISM UI page.

- `prism.tools.catalog` → lists curated pack options by workflow
- `prism.tools.plan` → generates platform-specific install command plans
- UI block: **Workflow Tool Packs**

Example tool call:

```json
{
  "action": "tools.plan",
  "payload": {
    "profile": "purple-team",
    "platform": "linux"
  }
}
```

> Commands are guidance-only and should be reviewed before execution in your environment.

---

## How it works (short)

```text
Operator / Channel
      │
      ▼
OpenClaw Gateway (runtime)
      │
      ├─ PRISM plugin methods/tool
      │   ├─ preflight (authorization/scope/tool-policy)
      │   ├─ evidence gate
      │   ├─ scenario run + scoring
      │   ├─ replay parity/drift
      │   └─ report generation
      │
      └─ Control UI PRISM page (live dashboard)
```

---

## Verify installation

```bash
openclaw plugins info prism-redteam
openclaw skills list | grep prism-redteam
```

---

## Validation checks

Plugin/runtime sanity:

```bash
openclaw plugins info prism-redteam
openclaw gateway status
```

Optional quick integration check from chat:

```text
/prism-doctor
/prism-status
```

---

## Repository hygiene

Quick checks:

```bash
git status
git ls-files | grep -Ei "\.env|\.pem|\.key|id_rsa|id_ed25519|secret|token" || true
```

---

## Troubleshooting (quick)

- **Plugin not listed:**
  ```bash
  openclaw plugins install --link ./extensions/prism-redteam
  openclaw plugins enable prism-redteam
  openclaw gateway restart
  ```
- **PRISM sidebar missing:**
  ```bash
  ./scripts/patch_openclaw_control_ui_prism.sh
  openclaw gateway restart
  ```
- **Need a health check:**
  ```bash
  /prism-doctor
  openclaw plugins info prism-redteam
  ```

---

## Safety & legal

Use PRISM only on systems you are explicitly authorized to test.

No unauthorized offensive activity. No out-of-scope targeting.
tools

Comments

Sign in to leave a comment

Loading comments...

Similar Plugins in Tools

Powermem

Powermem

PowerMem: Your AI-Powered Long-Term Memory — Accurate, Agile, Affordable. Also friendly support for the Moltbot (Clawdbo

393 620
Exoshell

Exoshell

A curated collection of Claude plugins and AI-assisted development skills inspired by Moltbot's atomic commit methodolog

36
Qq

Qq

OpenClaw QQ Plugin | 让 AI Agent 无缝接入 QQ 个人号的插件 基于 OneBot v11 协议(WebSocket),搭配 NapCat 使用,支持文字、图片、文件、语音 / 视频消息收发,以及主动推送、定时

13 767
Codex Ralph

Codex Ralph

Moltbot/Clawdbot plugin for autonomous AI coding loops using Codex (Ralph pattern)

8 8
Coclaw

Coclaw

OpenClaw community site: guides, troubleshooting and tools

5
Axonflow Openclaw

Axonflow Openclaw

AxonFlow governance plugin for OpenClaw — policy enforcement, PII detection, and audit trails for OpenClaw tool executio

4