StackMap
Subscribe
Explore / claude-bug-bounty
shuvonsec

claude-bug-bounty

Autonomous bug-bounty agent for the terminal — recon, 20 vuln classes, a validation gate and submission-ready HackerOne/Bugcrowd reports. Runs as a Claude Code plugin or standalone on free providers.

3,972 704 Python MITupdated 7 days ago
Curator's take

For solo bounty hunters who want an agent to run recon→hunt→validate→report end to end: the strict validation gate before a finding becomes a report is the useful part (cuts false-positive noise reviewers hate), and standalone mode on Ollama means no subscription. NOT a replacement for skilled manual testing on serious targets, and point it ONLY at assets you're authorized to test — autonomous scanning of others' systems is illegal. Report quality still needs a human pass before submission.

Mapped by ShipWithAI editors · links verified
README.md

BugHunter

BugHunter

AI-powered bug bounty hunting — recon to report, in your terminal.
Find vulnerabilities. Validate them. Get paid. No subscription required.

MIT License Python 3.9+ Free Standalone Mode Claude Code Plugin GitHub Stars

Star History Chart

Free Setup  ·  Quick Start  ·  Commands  ·  What It Finds  ·  Install  ·  FAQ


Here's what you see when you launch it.

██████  ██████  ██   ██ ██   ██ ███   █ ███████
██   ██ ██   ██ ██   ██ ██   ██ ████  █   ███
██████  ██████  ███████ ██   ██ ██ ██ █   ███
██████  ██████  ███████ ██   ██ ██  ███   ███
██   ██ ██   ██ ██   ██ ██   ██ ██   ██   ███
██████  ██████  ██   ██ ███████ ██   ██   ███

+ Recon. Hunt. Validate. Report. +

┌──────────────────────────────────────────────────────┐
│ Target  target.com                                   │
│ Mode    full                                         │
│ Output  recon/target.com/                            │
│ Auth    session loaded                               │
└──────────────────────────────────────────────────────┘

 ● local   Ready   type /hunt to begin

bbhunter v4.3

What Is This?

A professional bug bounty hunting toolkit that works with or without a Claude subscription. Give it a target — it handles recon, tests for vulnerabilities, validates findings through a strict gate, and writes submission-ready reports for HackerOne, Bugcrowd, Intigriti, and Immunefi.

It remembers everything. Patterns found on one target inform the next. Sessions pick up where they left off.

Works as a Claude Code plugin or as a fully standalone CLI (bughunter) powered by free AI providers.


🆓 Standalone Mode — No Subscription Required

You no longer need Claude Code, Claude Pro, or any paid AI subscription.

Install once, use the bughunter command from any terminal on your machine:

git clone https://github.com/shuvonsec/claude-bug-bounty.git
cd claude-bug-bounty
./install.sh --agent standalone
bughunter help               # show every command
bughunter setup              # choose your AI provider (Ollama is free + offline)
bughun

Continue your stack

What teams reach for next — and why each earns a place beside claude-bug-bounty. Ranked by curator confidence.