Paper Detail

ClawTrap: A MITM-Based Red-Teaming Framework for Real-World OpenClaw Security Evaluation

Haochen Zhao, Shaoyang Cui

Browse

Workflow Queues

arxiv Score 13.4

Published 2026-03-19 · First seen 2026-03-27

Research Track B · General AI

Open paper source

Abstract

Autonomous web agents such as \textbf{OpenClaw} are rapidly moving into high-impact real-world workflows, but their security robustness under live network threats remains insufficiently evaluated. Existing benchmarks mainly focus on static sandbox settings and content-level prompt attacks, which leaves a practical gap for network-layer security testing. In this paper, we present \textbf{ClawTrap}, a \textbf{MITM-based red-teaming framework for real-world OpenClaw security evaluation}. ClawTrap supports diverse and customizable attack forms, including \textit{Static HTML Replacement}, \textit{Iframe Popup Injection}, and \textit{Dynamic Content Modification}, and provides a reproducible pipeline for rule-driven interception, transformation, and auditing. This design lays the foundation for future research to construct richer, customizable MITM attacks and to perform systematic security testing across agent frameworks and model backbones. Our empirical study shows clear model stratification: weaker models are more likely to trust tampered observations and produce unsafe outputs, while stronger models demonstrate better anomaly attribution and safer fallback strategies. These findings indicate that reliable OpenClaw security evaluation should explicitly incorporate dynamic real-world MITM conditions rather than relying only on static sandbox protocols.

Workflow Status

Review status
pending
Role
unreviewed
Read priority
soon
Vote
Not set.
Saved
no
Collections
Not filed yet.
Next action
Not filled yet.

Reading Brief

No structured notes yet. Add `summary_sections`, `why_relevant`, `claim_impact`, or `next_action` in `papers.jsonl` to enrich this view.

Why It Surfaced

No ranking explanation is available yet.

Tags

No tags.

Similar Papers

AI Planning Framework for LLM-Based Web Agents 2026-03-13 · Score 21.5 Research Track B · General AI A Subgoal-driven Framework for Improving Long-Horizon LLM Agents 2026-03-20 · Score 24.2 Research Track B · General AI AdaRubric: Task-Adaptive Rubrics for LLM Agent Evaluation 2026-03-22 · Score 14.0 Research Track B · General AI ContractSkill: Repairable Contract-Based Skills for Multimodal Web Agents 2026-03-20 · Score 29.4 Research Track B · General AI Why Do LLM-based Web Agents Fail? A Hierarchical Planning Perspective 2026-03-15 · Score 20.2 Research Track B · General AI

BibTeX

@article{zhao2026clawtrap,
  title = {ClawTrap: A MITM-Based Red-Teaming Framework for Real-World OpenClaw Security Evaluation},
  author = {Haochen Zhao and Shaoyang Cui},
  year = {2026},
  abstract = {Autonomous web agents such as \textbackslash{}textbf\{OpenClaw\} are rapidly moving into high-impact real-world workflows, but their security robustness under live network threats remains insufficiently evaluated. Existing benchmarks mainly focus on static sandbox settings and content-level prompt attacks, which leaves a practical gap for network-layer security testing. In this paper, we present \textbackslash{}textbf\{ClawTrap\}, a \textbackslash{}textbf\{MITM-based red-teaming framework for real-world OpenClaw security evaluation\}. ClawTrap s},
  url = {https://arxiv.org/abs/2603.18762},
  keywords = {cs.CR, cs.AI},
  eprint = {2603.18762},
  archiveprefix = {arXiv},
}

Metadata

{}