# Audit Telnet IoT Shells

IoT telnet shells are hard to inspect consistently during authorized security tests. This skill provides a telnet helper, enumeration scripts, logging guidance, and structured workflows for device assessment.

## Install

```bash
npx skillstore add brownfinesecurity/telnetshell
```

## Metadata

- - Slug: brownfinesecurity-telnetshell
- - Version: 1.0.0
- - Author: BrownFineSecurity
- - GitHub username: BrownFineSecurity
- - License: MIT
- - Repository: https://github.com/BrownFineSecurity/iothackbot/tree/master/skills/telnetshell
- - Ref: master
- - Supported tools: Claude, Codex, Claude Code
- - Risk level: critical
- - Risk factors: scripts, network, filesystem, external\_commands
- - Quality score: 38
- - Quality tier: warning
- - Public page: https://skillstore.pages.dev/skills/brownfinesecurity-telnetshell
- - Manifest: https://skillstore.pages.dev/api/skills/brownfinesecurity-telnetshell/manifest

## Capabilities

- Connects to telnet-accessible devices by host and port.
- Runs single commands, interactive sessions, or command files through a Python helper.
- Detects common IoT and BusyBox shell prompts.
- Cleans command output by removing echoes, prompts, and ANSI codes.
- Logs telnet sessions for observation and later review.
- Provides prebuilt scripts for system, network, file, and security enumeration.

## Use Cases

- Authorized IoT Lab Assessment: Inspect a lab device with a known telnet shell and collect baseline system, network, and file information.
- BusyBox Device Triage: Run repeatable commands against embedded Linux devices and normalize noisy shell output for review.
- Telnet Exposure Review: Document reachable telnet services, authentication behavior, and device configuration during an approved audit.

## Prompt Templates

### Connect to a Lab Device

```
Use the telnet shell skill to connect to my authorized lab device at HOST on PORT and run a basic uname check with session logging.
```

### Run System Enumeration

```
Use the provided system enumeration script against HOST on PORT, save the session log, and summarize the device identity, kernel, storage, and BusyBox details.
```

### Review Network Configuration

```
Inspect the authorized device network configuration through telnet and report interfaces, routes, listening services, and firewall rules.
```

### Assess High-Risk Commands

```
Review the telnet shell workflow for commands that access credentials, create persistence, extract data, or remove evidence, and classify which steps should be excluded.
```

## Limitations

- Requires network access to a reachable telnet service.
- Requires Python 3, pexpect, and a local telnet client.
- Does not verify authorization for the target device.
- Includes high-risk post-exploitation examples that are not suitable for marketplace publication.

## Best Practices

- Use only on devices you own or have explicit written authorization to test.
- Keep session logs protected because they can contain credentials and sensitive configuration.
- Limit commands to non-destructive inventory and verification tasks during routine audits.

## Anti Patterns

- Do not use the helper against unknown public IP addresses or third-party devices.
- Do not add persistence, backdoors, or SSH keys through this workflow.
- Do not delete logs, clear history, or hide activity after testing.

## Security Audit

- - Safe to publish: false
- - Audited at: 2026-06-28T17:15:34.15\+00:00
- - Summary: Static analysis findings are confirmed in context. The skill is a telnet shell automation package for IoT penetration testing, but it includes explicit persistence, backdoor, credential harvesting, data extraction, firmware export, and trace removal guidance. Because these instructions enable post-exploitation and evasion, this skill should be blocked from marketplace publication.

## Stats

- - Views: 190
- - Downloads: 8
- - Favorites: 0
- - Popularity score: 0
