AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code.

A Claude Code skill bundle for bug hunting and external red-team work — 71 skills, 15 slash commands, 681 disclosed-report patterns curated across 24 core vulnerability classes, plus enterprise identity + infrastructure attack matrices.

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔

Bug bounty agent framework for Claude Code, Codex, Gemini, Cursor, Windsurf, Copilot, and OpenClaw — 48 agents, 26 commands, 19 CLI tools, 2 MCP servers, autonomous hunt loops, exploit chain builder.

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

Bugcrowd’s baseline priority ratings for common security vulnerabilities

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools

Python library and CLI for the Bug Bounty Recon API

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

Cryptography Tool | RSA Attacks

Credentials Checking Framework

Bug bounty API dashboard aggregating data from HackerOne, Bugcrowd and other platforms

BugBounty Tool

Web-based Android debugger with inspection capabilities using Frida and Jadx as a backbone

Tool to find stored robots.txt files from the past

Python implementation of a Bugcrowd api client.

Supply a domain to retrieve acquisitions details.

Automating tool for bug hunting recon and bug discovery