security-monitor
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
ChineseSecurity Monitor Skill
安全监控Skill
When to use
使用场景
Run continuous security monitoring to detect breaches, intrusions, and unusual activity on your Clawdbot deployment.
在你的Clawdbot部署环境中运行持续安全监控,以检测数据泄露、入侵行为和异常活动。
Setup
设置说明
No external dependencies required. Runs as a background process.
无需外部依赖,作为后台进程运行。
How to
使用方法
Start real-time monitoring
启动实时监控
bash
node skills/security-monitor/scripts/monitor.cjs --interval 60bash
node skills/security-monitor/scripts/monitor.cjs --interval 60Run in daemon mode (background)
以守护进程模式运行(后台)
bash
node skills/security-monitor/scripts/monitor.cjs --daemon --interval 60bash
node skills/security-monitor/scripts/monitor.cjs --daemon --interval 60Monitor for specific threats
监控特定威胁
bash
node skills/security-monitor/scripts/monitor.cjs --threats=credentials,ports,api-callsbash
node skills/security-monitor/scripts/monitor.cjs --threats=credentials,ports,api-callsWhat It Monitors
监控内容
| Threat | Detection | Response |
|---|---|---|
| Brute force attacks | Failed login detection | Alert + IP tracking |
| Port scanning | Rapid connection attempts | Alert |
| Process anomalies | Unexpected processes | Alert |
| File changes | Unauthorized modifications | Alert |
| Container health | Docker issues | Alert |
| 威胁类型 | 检测方式 | 响应措施 |
|---|---|---|
| 暴力破解攻击 | 检测登录失败行为 | 警报 + IP追踪 |
| 端口扫描 | 检测快速连接尝试 | 警报 |
| 进程异常 | 检测意外进程 | 警报 |
| 文件变更 | 检测未授权修改 | 警报 |
| 容器健康状态 | 检测Docker问题 | 警报 |
Output
输出方式
- Console output (stdout)
- JSON logs at
/root/clawd/clawdbot-security/logs/alerts.log - Telegram alerts (configurable)
- 控制台输出(标准输出)
- JSON日志存储于
/root/clawd/clawdbot-security/logs/alerts.log - Telegram警报(可配置)
Daemon Mode
守护进程模式
Use systemd or PM2 to keep monitoring active:
bash
undefined使用systemd或PM2保持监控持续运行:
bash
undefinedWith PM2
使用PM2
pm2 start monitor.cjs --name "clawdbot-security" -- --daemon --interval 60
undefinedpm2 start monitor.cjs --name "clawdbot-security" -- --daemon --interval 60
undefinedCombined with Security Audit
与安全审计结合使用
Run audit first, then monitor continuously:
bash
undefined先运行审计,再进行持续监控:
bash
undefinedOne-time audit
一次性审计
node skills/security-audit/scripts/audit.cjs --full
node skills/security-audit/scripts/audit.cjs --full
Continuous monitoring
持续监控
node skills/security-monitor/scripts/monitor.cjs --daemon
undefinednode skills/security-monitor/scripts/monitor.cjs --daemon
undefinedRelated skills
相关技能
- - One-time security scan (install separately)
security-audit
- - 一次性安全扫描(需单独安装)
security-audit