AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code.

A Claude Code skill bundle for bug hunting and external red-team work — 71 skills, 15 slash commands, 681 disclosed-report patterns curated across 24 core vulnerability classes, plus enterprise ide…

A list of developer portfolios for your inspiration

Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent. By using Claude.md and creating rules, sub-agents, and skills, and orchestrating security tool usage, we confi…

LLM inference server with continuous batching & SSD caching for Apple Silicon — managed from the macOS menu bar

Shannon Lite is an autonomous, white-box AI pentester for web applications and APIs. It analyzes your source code, identifies attack vectors, and executes real exploits to prove vulnerabilities bef…

Fetch all the URLs that the Wayback Machine knows about for a domain

Monitor your targets and hunt fresh assets in real time.

AI-Driven Recon & Bug Bounty Toolkit

how to look for Leaked Credentials !

Most advanced XSS scanner.

Linkfinder by Rdzsp is a browser extension that automatically scans and collects endpoints from JavaScript files on websites

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

A list of resources for those interested in getting started in bug bounties

Incredibly fast crawler designed for OSINT.

High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)

Bug Bounty Methodology 2025: Tools, techniques, and steps to guide you through reconnaissance, enumeration, and testing.

Find, verify, and analyze leaked credentials

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security teste…

Practical web security notes and lab solutions focused on understanding and exploiting common web vulnerabilities.

These are my checklists which I use during my hunting.

A tool to perform Kerberos pre-auth bruteforcing

a security scanner for custom LLM applications

The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

This repository is maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), AI security,…

Zhazha's blog

Automation tool to testing and confirm the xss vulnerability.