Web path scanner

AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code.

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出

Obtain GraphQL API schema even if the introspection is disabled

Open-source vulnerability disclosure and bug bounty program database

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

ChatGPT Plus/Team/Pro 订阅协议端到端重放工具集 · hCaptcha 视觉求解器 · 反欺诈机制实证研究 / End-to-end protocol replay toolkit for ChatGPT Plus/Team/Pro subscription with from-scratch hCaptcha solver and empirical anti-fraud research

My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.

BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔

ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )

Pentesting automation platform that combines hacking tools to complete assessments

A modern tool written in Python that automates your xss findings.

A python tool to check subdomain takeover vulnerability

MCP server that connects AI assistants to HackerOne for bug bounty hunting

AI-powered vulnerability scanner extension for Burp Suite with multi-provider support (Ollama, OpenAI, Claude, Gemini)

Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.

A hacking tool for bug bounties. Sharing and modifying is encouraged!

Autonomous bug-bounty framework for Claude Code — 40 specialist agents, exploit-chain builder, writeup search, and live HackerOne/Bugcrowd integration.

Automate dorking while doing bug bounty or other stuffs.