CLAUDE.md configs and skills I use for bug bounty hunting with Claude Code
☆22Apr 14, 2026Updated 3 months ago
Alternatives and similar repositories for claude-code-bb
Users that are interested in claude-code-bb are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Bug bounty methodology, checklists, and hunting notes.☆21Updated this week
- Stealth hybrid URL mapper☆17May 1, 2026Updated 2 months ago
- Etherpad: real-time collaborative document editor☆10Mar 30, 2020Updated 6 years ago
- A simple HAR-based JavaScript recon automation kit for organizing JS files, endpoints, secrets, and gf-filtered attack surface during bug…☆16May 20, 2026Updated last month
- A curated collection of my security research and bug bounty writeups, documenting real-world vulnerabilities, exploitation methods☆20Jun 29, 2026Updated 2 weeks ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- My Main App Hacking CheckList☆31Jun 20, 2026Updated 3 weeks ago
- My ATO Via Password Reset Methodology☆53May 13, 2026Updated 2 months ago
- An obsessive, expert-tier knowledge base + AI skill system for professional bug bounty hunting, security research, and penetration testin…☆23Apr 25, 2026Updated 2 months ago
- A Chrome extension that watches your HackerOne reports and alerts you when their status changes. Its main reason to exist is internal act…☆15Jul 3, 2026Updated last week
- A Python tool to resolve domains to IPs, fetch related CVEs, and display open ports☆17Nov 21, 2025Updated 7 months ago
- CVE-2025-55182-bypass-waf☆30Jan 8, 2026Updated 6 months ago
- Cryptanalysis of a proprietary 1999 video DRM system. Recovers 61 encrypted wrestling videos from the WCW Internet Powerdisk CD-ROM throu…☆25Jan 29, 2026Updated 5 months ago
- Proof-of-Concept exploit for CVE-2026-23918 (Apache mod_http2 double-free). Features multi-mode DoS (Rapid-RST, Slow-Drip) and passive RC…☆22May 6, 2026Updated 2 months ago
- Rusty Mimikatz - All credits to: github.com/ThottySploity/mimiRust (Original author deleted account so I uploaded for community use)☆21Nov 24, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 5-layer persistent memory and identity architecture for AI agents. Production-validated over 353+ sessions. First documented case of emer…☆44Updated this week
- The primary goal of this project is to explain SQL Injection (one of the OWASP Top 10 vulnerabilities) and to provide a beneficial resour…☆75Jan 10, 2026Updated 6 months ago
- Curated skill pack for LLM agents in engineer and science workflow (Cursor & Claude ready).☆21Updated this week
- 🔍 Bug Bounty Search Engine - Advanced reconnaissance toolkit with 64+ Google dork queries organized into 10 categories for security rese…☆43Oct 6, 2025Updated 9 months ago
- Use claude code anywhere.☆63Apr 19, 2026Updated 2 months ago
- Advanced WhatsApp Web API toolkit built on Baileys with per-device messaging, silent ping capabilities, device fingerprinting, and compre…☆15Updated this week
- This lab is for **EDUCATIONAL PURPOSES ONLY**. Use it responsibly and only on systems you own or have explicit permission to test. Do not…☆21Feb 20, 2026Updated 4 months ago
- A fast and efficient subdomain hijacking scanner that checks for takeover vulnerabilities by matching HTTP response bodies against predef…☆31Apr 12, 2026Updated 3 months ago
- ☆98Apr 3, 2025Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A collection of in-depth studies authored by me on JavaScript engine vulnerabilities.☆49Feb 6, 2026Updated 5 months ago
- ☆13Nov 7, 2023Updated 2 years ago
- A command-line tool for testing RocketMQ vulnerabilities.☆15Feb 7, 2025Updated last year
- My-custom-sensitive-info-disclsure-nuclei-template☆33Jan 3, 2026Updated 6 months ago
- ☆29Updated this week
- ☆48Feb 28, 2026Updated 4 months ago
- Replay any request as another user to find IDOR/BOLA/BFLA, right in the browser.☆26Jun 16, 2026Updated 3 weeks ago
- RATs library 2003 to present☆17Oct 14, 2023Updated 2 years ago
- List of Fresh DNS resolvers updates every 1 hour☆21Updated this week
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆34Jan 18, 2026Updated 5 months ago
- Defensive security canary tool that detects unauthorized access via decoy files with Discord/Telegram alerts, geofencing, and threat inte…☆19Jul 5, 2026Updated last week
- Scanner for Log4j RCE CVE-2021-44228☆11Jul 6, 2022Updated 4 years ago
- This repo collects nuclei template from 600+ github repos, updates every 6 hours.☆38Feb 17, 2026Updated 4 months ago
- TokenTwin Checker — Dual Token BAC/IDOR Tester for Burp Suite☆84Jun 28, 2026Updated 2 weeks ago
- ☆10Mar 29, 2022Updated 4 years ago
- crack and generate jwt with ease☆24Mar 23, 2025Updated last year