Claude-BugHunter turns Claude Code from a generic assistant into a senior bug hunter. 71 skills, 681 disclosed HackerOne patterns, 24 vulnerability classes, and a 5-phase non-linear workflow covering recon, map, hunt, validate, and report. Free and MIT licensed.
— REPO
https://github.com/elementalsouls/Claude-BugHunter
— DOCS
https://elementalsouls.github.io/Claude-BugHunter
— CHAPTERS
0:00 – Intro
0:43 – What It Does
1:14 – Install
1:58 – 71 Skills
3:02 – Watch It Find Bugs
4:01 – Enterprise Mode
4:52 – 7-Question Gate
5:36 – Should You Install It
— FREE PDF GUIDE
https://drive.google.com/file/d/15gaWTZy1EFWJSjnvStXCWGRXBi-vX7P5/view?usp=drivesdk
— INSTALL (plugin method)
/plugin marketplace add elementalsouls/Claude-BugHunter
/plugin install claude-bughunter@elementalsouls
— INSTALL (copy method)
git clone https://github.com/elementalsouls/Claude-BugHunter.git
cd Claude-BugHunter
bash scripts/install.sh
— ALL HARNESSES + BURP MCP
bash scripts/install.sh –all –burp-mcp
— SKILL CATEGORIES (71 total)
Web Hunting (13), Auth + Identity (7), API + Infra (15), Advanced/Concurrency (6),
Framework-Specific (4), Enterprise Identity/Cloud (3), Infra/Appliance (4),
Red-Team Tradecraft (4), Recon/OSINT (4), Workflow/Reporting (11)
— COVERAGE
M365/Entra, Okta, vCenter, SSL-VPN, SharePoint, Cloud IAM, Android APK,
Supply-Chain, OAuth, JWT, SSRF, IDOR, RCE chains, SQLi, XSS
— AFFILIATE – GoHighLevel Pro Trial (the CRM I use)
https://www.gohighlevel.com/pro-trial?fp_ref=shawn84
— SUBSCRIBE TO GPTAICLIPS
https://www.youtube.com/@gptaiclips?sub_confirmation=1
#BugBounty #ClaudeCode #ClaudeBugHunter #HackerOne #BugCrowd #Intigriti #RedTeam #Pentest #OWASP #WebSecurity #SSRF #IDOR #XSS #SQLInjection #OAuth #JWT #M365 #Okta #vCenter #CVE #Cybersecurity #AISecurity #ClaudeCodeSkills #SecurityAutomation #AIRedTeam #Anthropic #BugBountyTips #EthicalHacking #PentestingTools #AITools2025 #AITools #ArtificialIntelligence #MachineLearning #gptaiclips