Lists (13)
Stars
AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code.
Skills for threat modeling, scanning, triage, patching, plus an autonomous scanning harness you can /customize
Agentic offensive-security in your terminal
Open-source LLM red-teaming technique toolkit (162 transforms, 36 mutators, 25 tool surfaces). MIT.
A universal MCP client with proxying feature to interact with MCP Servers which support STDIO transport.
MCP Attack Surface Detector - Burp plugin to make manual testing of MCP servers easier in Burp Suite
Crawl and extract (regular or onion) webpages through TOR network
Open Source Intelligence Interface for Deep Web Scraping
This repository is maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), AI security,…
A curated list of various bug bounty tools
Every time a Bug Bounty Program in Immunefi modifies its policy, assets-in-scope, or bounties-table, a bot will commit those changes to this repo. To get a before/after diff of a project go to `./p…
Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
SelimDroid - Automated Android Dynamic Security Scanner
Turn Claude Code into your offensive security research assistant. Specialized AI subagents for authorized penetration testing plan engagements, analyze recon, research exploits, build detections, a…
Android interception tool for component communication and attack-surface mapping
JWT Auditor – Analyze, break, and understand your tokens like a pro.
A collection of regex patterns for static analysis of Android apps (decompiled APKs).
AltStore is an alternative app store for non-jailbroken iOS devices.
SideStore / SideStore
Forked from altstoreio/AltStoreSideStore is a fork of AltStore that doesn't require an AltServer.
rga: ripgrep, but also search in PDFs, E-Books, Office documents, zip, tar.gz, etc.