AgentSkillsCN

sysadmin-toolbox

为系统管理员、DevOps 工程师以及安全运维人员提供工具发现指南与 Shell 一键式参考。当用户遇到以下场景时,可自动调用此技能:排查网络问题、调试进程、分析日志、处理 SSL/TLS 证书、管理 DNS、测试 HTTP 端点、开展安全审计、操作容器、编写 Shell 脚本,或当用户询问“针对 X 任务,我该选用哪款工具?”时。

SKILL.md
--- frontmatter
name: sysadmin-toolbox
description: "Tool discovery and shell one-liner reference for sysadmin, DevOps, and security tasks. AUTO-CONSULT this skill when the user is: troubleshooting network issues, debugging processes, analyzing logs, working with SSL/TLS, managing DNS, testing HTTP endpoints, auditing security, working with containers, writing shell scripts, or asks 'what tool should I use for X'. Source: github.com/trimstray/the-book-of-secret-knowledge"

Sysadmin Toolbox

Curated tool recommendations and practical shell one-liners for operational work.

When to Auto-Consult

Load relevant references when user is:

  • Debugging network connectivity, ports, traffic
  • Troubleshooting DNS or SSL/TLS
  • Analyzing processes, memory, disk usage
  • Working with logs or system diagnostics
  • Writing shell scripts or one-liners
  • Asking "what's a good tool for..."
  • Doing security audits or pentesting
  • Working with containers/Docker/K8s

Reference Files

FileUse When
references/shell-oneliners.mdNeed practical commands for: terminal, networking, SSL, curl, ssh, tcpdump, git, awk, sed, grep, find
references/cli-tools.mdRecommending CLI tools: shells, file managers, network utils, databases, security tools
references/web-tools.mdWeb-based tools: SSL checkers, DNS lookup, performance testing, OSINT, scanners
references/security-tools.mdPentesting, vulnerability scanning, exploit databases, CTF resources
references/shell-tricks.mdShell scripting patterns and tricks

Quick Tool Index

Network Debugging

  • mtr - traceroute + ping combined
  • tcpdump / tshark - packet capture
  • netstat / ss - connection monitoring
  • nmap - port scanning
  • curl / httpie - HTTP testing

DNS

  • dig / host - DNS queries
  • dnsdiag - DNS diagnostics
  • subfinder / amass - subdomain enumeration

SSL/TLS

  • openssl - certificate inspection
  • testssl.sh - TLS testing
  • sslyze - SSL scanning
  • certbot - Let's Encrypt

Process/System

  • htop / btop - process monitoring
  • strace / ltrace - syscall/library tracing
  • lsof - open files/connections
  • ncdu - disk usage

Log Analysis

  • lnav - log navigator
  • GoAccess - web log analyzer
  • angle-grinder - log slicing

Containers

  • dive - Docker image analysis
  • ctop - container top
  • lazydocker - Docker TUI

Operational Gotchas (Recent)

  • Git commit fails (GPG expired): Use git -c commit.gpgsign=false commit ... or renew your GPG key.
  • /bin/sh vs bash: wait -n is bash-only; use /bin/bash -lc or a Python ThreadPool fallback for parallel downloads.

Keeping Current

References auto-refresh weekly (Sundays 5am ET) from the upstream repo:

bash
~/clawd-duke-leto/skills/sysadmin-toolbox/scripts/refresh.sh

Manual refresh anytime:

bash
./scripts/refresh.sh [skill-dir]

Example Queries → Actions

"Why is this port not responding?" → Load shell-oneliners.md, search for netstat/ss/lsof commands

"What's a good tool for testing SSL?" → Load cli-tools.md SSL section, recommend testssl.sh or sslyze

"Show me how to find large files" → Load shell-oneliners.md, search for find/ncdu/du commands

"I need to debug DNS resolution" → Load shell-oneliners.md dig section + recommend dnsdiag from cli-tools.md