Coding-with-Mayank/ai-bugbounty-hunter

🎯 AI-Powered Bug Bounty Hunter

🐳 Docker Deployment (Recommended)

Fastest way to get started - Just 3 commands!

# 1. Clone
git clone https://github.com/Coding-with-Mayank/ai-bugbounty-hunter.git
cd ai-bugbounty-hunter

# 2. Configure (optional - works without API keys)
cp .env.example .env
nano .env  # Add ANTHROPIC_API_KEY for AI features

# 3. Start
docker-compose up -d

Connect to Claude Desktop:

Add to ~/Library/Application Support/Claude/claude_desktop_config.json:

{
  "mcpServers": {
    "bugbounty-docker": {
      "command": "docker",
      "args": ["exec", "-i", "bugbounty-mcp-server", "python3", "server.py"]
    }
  }
}

Restart Claude Desktop. Done! 🎉

See for detailed guide.

💬 Usage with Claude

Once connected, simply give me scope:

You: "Hunt bugs on example.com. Program: https://hackerone.com/example"

I'll automatically:

1. ✅ Validate scope (AI-powered)
2. 🔍 Run reconnaissance (30+ tools)
3. 🛡️ Scan vulnerabilities (XSS, SQLi, IDOR, etc.)
4. 💥 Generate PoCs
5. 📊 Create professional report

Time: 15-30 minutes (fully automated)
Results: ./reports/ and ./results/

✨ Features

🤖 AI-Powered (Optional)

• Smart scope validation (95%+ accuracy)
• Intelligent vulnerability analysis
• Strategic attack recommendations
• HackerOne-style professional reports

🔍 30+ Security Tools (Works Without API Keys)

• Recon: Subfinder, Amass, Certificate Transparency
• Scanning: Nuclei (6000+ templates), SQLMap, Dalfox
• Discovery: Katana, Gospiper, Wayback Machine, GAU
• Analysis: Technology detection, port scanning, DNS enum

🐳 Docker Benefits

• ✅ No installation hassles
• ✅ Isolated environment
• ✅ One-command deployment
• ✅ Persistent results
• ✅ Easy Claude integration

📊 Feature Comparison

🚀 Quick Examples

Example 1: Full Automated Hunt

You: "Scan shop.example.com from Bugcrowd program"

Claude: 
✅ Validated scope
🔍 Found 23 subdomains, 15 ports
🛡️ Discovered 3 vulnerabilities:
   - CRITICAL: Price manipulation
   - HIGH: IDOR in orders
   - MEDIUM: XSS
📊 Report: ./reports/shop_example_com_2024.md

Result: Ready to submit!

Example 2: Quick Check

You: "Quick scan of api.example.com"

Claude:
✅ Scope validated
🔍 Recon: Vue.js + Node.js + PostgreSQL
🛡️ Found: Weak JWT implementation (HIGH)
📊 PoC ready

Time: 8 minutes

🔒 Legal & Safety

This tool is for authorized testing ONLY:

✅ Always validates scope (automatic with AI)
✅ Safe mode by default (non-destructive)
✅ Respects program rules
✅ Ethical PoCs only

📚 Documentation

• - Complete Docker setup guide
• - 5-minute guide
• GitHub Issues - Support

🛠️ Development Setup (Alternative)

If you prefer native installation:

git clone https://github.com/Coding-with-Mayank/ai-bugbounty-hunter.git
cd ai-bugbounty-hunter
sudo bash setup.sh

🎯 What Makes This Different?

🤝 Contributing

Contributions welcome! Areas:

• Additional scanners
• New exploit templates
• Better reporting
• More integrations

📄 License

MIT License

📦 Repository Structure

ai-bugbounty-hunter/
├── Dockerfile              # Container image
├── docker-compose.yml      # Easy deployment
├── server.py              # MCP server
├── scope_validator.py     # Scope validation
├── recon_engine.py        # Reconnaissance
├── vulnerability_scanner.py # Scanning
├── exploit_framework.py   # PoC generation
├── report_generator.py    # Professional reports
├── ai_analyzer.py         # AI intelligence
├── results/               # Scan results
├── reports/               # Generated reports
└── logs/                  # Server logs

🎊 Get Started Now

git clone https://github.com/Coding-with-Mayank/ai-bugbounty-hunter.git
cd ai-bugbounty-hunter
docker-compose up -d

Then give me scope and watch the magic happen! ✨