How To approach recon on real targets — from passive enumeration to origin IP discovery. Covers tools, automation, and the logic behind each phase.
☆324Jul 5, 2026Updated last week
Alternatives and similar repositories for Full-Bug-Bounty-Hunting-Methodology-2026
Users that are interested in Full-Bug-Bounty-Hunting-Methodology-2026 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 162 offensive security skills for recon and pentest. Field-validated techniques from 600+ targets across 45+ sectors. Updated with origin…☆754Updated this week
- My Main App Hacking CheckList☆31Jun 20, 2026Updated 3 weeks ago
- AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude…☆3,957Updated this week
- AI-Powered Agents for Bub-Bounty Pentesting and Red-Teaming purposes☆342Apr 30, 2026Updated 2 months ago
- Agentic offensive-security in your terminal☆831Jun 14, 2026Updated last month
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A complete bug bounty workspace for HackerOne researchers. Includes scope enforcement, automated recon/vuln pipeline (400+ tools), report…☆86Updated this week
- Solutions for all the WebSecurityAcademy with Videos☆123Jun 20, 2026Updated 3 weeks ago
- A Claude Code skill bundle for bug hunting and external red-team work — 71 skills, 15 slash commands, 681 disclosed-report patterns curat…☆2,968Jul 1, 2026Updated last week
- ☆96May 11, 2026Updated 2 months ago
- Burp Suite extension for cross-identity & cross-tenant access-control testing — BAC, IDOR, BOLA, and privilege escalation.☆29Updated this week
- A shellcode loader generator with support for multiple injection techniques, built for red team engagements.☆93Jul 1, 2026Updated last week
- BugBounty-Recon-Methodology☆315May 26, 2026Updated last month
- BountyLens MCP server — connect Claude Code to your Hunter Tracker☆64Jun 22, 2026Updated 3 weeks ago
- All-round bug bounty skill for Claude Code parallelized agents for smart contract audits (EVM, Move, Solana, TRON), web/API security, an…☆174Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A blazingly fast, multi-threaded TUI malware analysis tool built in Rust. Features deep PE parsing, YARA scanning, and heuristic risk sco…☆162Updated this week
- Collection of documentation, tools, and tips related to vulnerability research.☆94Updated this week
- autonomous red teaming platform; multi-agent offensive-security meta-harness☆4,701Updated this week
- Bug bounty focused JavaScript security analysis for crawling web assets, source maps, and secret discovery☆45Updated this week
- A collection of awesome one-liners for bug bounty hunting.☆60Apr 12, 2026Updated 3 months ago
- Turn Claude Code into your offensive security research assistant. Specialized AI subagents for authorized penetration testing plan engage…☆1,993Jun 22, 2026Updated 3 weeks ago
- My ATO Via Password Reset Methodology☆53May 13, 2026Updated 2 months ago
- claude-red is a curated library of offensive security skills designed for the Claude skills system. Each skill is a structured SKILL.md f…☆2,696May 8, 2026Updated 2 months ago
- A curated collection of my security research and bug bounty writeups, documenting real-world vulnerabilities, exploitation methods☆20Jun 29, 2026Updated 2 weeks ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Replay any request as another user to find IDOR/BOLA/BFLA, right in the browser.☆26Jun 16, 2026Updated 3 weeks ago
- HackAgent is an open-source security toolkit to detect vulnerabilities of your AI Agents☆282Updated this week
- Many script that can be modified according to your needs for Information Gathering and Asset discovery in Bug Bounty Hunting (Pull reques…☆61Feb 26, 2024Updated 2 years ago
- An obsessive, expert-tier knowledge base + AI skill system for professional bug bounty hunting, security research, and penetration testin…☆23Apr 25, 2026Updated 2 months ago
- MCP server that connects AI assistants to HackerOne for bug bounty hunting☆327Apr 7, 2026Updated 3 months ago
- Apkx-Hunter is an Android Static Analysis Framework written entirely in C, purpose-built for Android security assessments, reverse engine…☆47Updated this week
- Find zero-days while you sleep. DeepZero is an automated vulnerability research framework that parses, decompiles, and analyzes thousands…☆578Apr 28, 2026Updated 2 months ago
- A comprehensive guide to adversarial testing and security evaluation of AI systems, helping organizations identify vulnerabilities before…☆576Updated this week
- 66-tool MCP server for dark web intelligence — breach data, ransomware tracking, Tor .onion access, malware analysis, blockchain intel, e…☆206Jul 7, 2026Updated last week
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- TokenTwin Checker — Dual Token BAC/IDOR Tester for Burp Suite☆84Jun 28, 2026Updated 2 weeks ago
- AI-powered offensive security agent with 7,300+ actionable security skills. Autonomous pentesting powered by MITRE ATT&CK (2,000+ Atomic …☆1,201Updated this week
- A tool for detecting subdomain takeover vulnerabilities by checking DNS records☆33May 28, 2026Updated last month
- CVE2PoC is a tool that helps penetration testers, bug hunters, and security researchers quickly find public exploits or PoCs related to a…☆133Updated this week
- Python Exploitation Framework, V8 Engine Debugger, Proxy interceptor, marketplace, post-exploitation, backdoor generator,....☆428Updated this week
- ☆320Updated this week
- Modular Go framework for attack surface management, reconnaissance, and vulnerability scanning.☆158Jul 6, 2026Updated last week