AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code.
☆1,695Apr 7, 2026Updated last week
Alternatives and similar repositories for claude-bug-bounty
Users that are interested in claude-bug-bounty are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 🤹 Caido AI Skills☆178Apr 10, 2026Updated last week
- BugBounty-Recon-Methodology☆257Mar 11, 2026Updated last month
- AI-powered vulnerability scanner extension for Burp Suite with multi-provider support (Ollama, OpenAI, Claude, Gemini)☆270Mar 19, 2026Updated 3 weeks ago
- JWTLens - Burp Suite extension for automated JWT security testing. 62 checks: passive scanning, algorithm confusion, signature bypass, …☆44Mar 19, 2026Updated last month
- Hands-on challenges for learning how to reverse engineer Flutter applications.☆42Jan 31, 2026Updated 2 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Turn Claude Code into your offensive security research assistant. Specialized AI subagents for authorized penetration testing plan engage…☆212Updated this week
- ☆24Oct 17, 2024Updated last year
- ☆14Aug 22, 2025Updated 7 months ago
- Generate Claude Code bug bounty skills from public HackerOne reports and GitHub writeups — 18 vuln classes, no private reports needed☆143Mar 12, 2026Updated last month
- NeuroSploit is an advanced, AI-powered penetration testing framework designed to automate and augment various aspects of offensive securi…☆1,013Mar 29, 2026Updated 2 weeks ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,444Apr 10, 2026Updated last week
- Top disclosed reports from HackerOne☆5,657Mar 30, 2026Updated 2 weeks ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆563Mar 8, 2025Updated last year
- Find XSS payloads that actually work by filtering them based on real-world constraints instead of blind payload spraying.☆208Mar 8, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for …☆1,278Jul 18, 2024Updated last year
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,812May 22, 2024Updated last year
- ☆40Nov 24, 2025Updated 4 months ago
- An Vulnerability detection and Exploitation tool for CVE-2024-24919☆25Jun 5, 2024Updated last year
- 754 structured cybersecurity skills for AI agents · Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF…☆4,513Updated this week
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆3,468Feb 10, 2024Updated 2 years ago
- Automated web vulnerability scanning with LLM agents☆463Jun 18, 2025Updated 10 months ago
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws☆3,970Oct 4, 2025Updated 6 months ago
- Methodoloy for pentesting web applications.☆10Aug 18, 2022Updated 3 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- AIRecon is an autonomous cybersecurity agent that combines a self-hosted Large Language Model (Ollama) with a Kali Linux Docker sandbox a…☆372Apr 10, 2026Updated last week
- ☆58Mar 9, 2026Updated last month
- ☆33Nov 10, 2025Updated 5 months ago
- Many script that can be modified according to your needs for Information Gathering and Asset discovery in Bug Bounty Hunting (Pull reques…☆61Feb 26, 2024Updated 2 years ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,833Updated this week
- Wordlists for content discovery with special words in different languages☆15Jan 17, 2025Updated last year
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,543Mar 8, 2026Updated last month
- A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.☆20Sep 1, 2025Updated 7 months ago
- A PowerShell script designed to detect misconfigured Azure Storage Accounts that could potentially be exploited for privilege escalation …☆13Apr 25, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- 🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…☆1,580Updated this week
- WEB渗透测试数据库☆10Sep 20, 2016Updated 9 years ago
- Admin Directory Finder is a tool designed to scan and identify directories under admin paths, such as admin/dashboard.php. It helps in se…☆33Aug 31, 2025Updated 7 months ago
- Burp Suite extension that adds built-in MCP tooling, AI-assisted analysis, privacy controls, passive and active scanning and more☆930Apr 9, 2026Updated last week
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆5,031Dec 21, 2024Updated last year
- best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect☆1,555Dec 7, 2025Updated 4 months ago
- Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet☆56Oct 23, 2024Updated last year