Can I use this for automated bug bounty hunting?

Yes, it is specifically designed to automate the reconnaissance and discovery phases of bug bounty hunting while maintaining thorough coverage.

Does it follow a specific security methodology?

It incorporates the Jason Haddix methodology for application analysis, focusing on heat map priority areas like file uploads, APIs, and profile sections.

What security tools does this Claude Code skill support?

It provides configurations and workflows for industry-standard tools including Amass, Subfinder, Nuclei, httpx, ffuf, Dalfox, and ParamSpider.

What environment is required for these tools?

The workflows are optimized for Linux-based attack machines (such as Kali or Ubuntu) with Go, Python, and Ruby installed.

Red Team Methodology & Tools

Name: Red Team Methodology & Tools
Author: claudiodearaujo

byclaudiodearaujo

セキュリティとテスト

Automates security reconnaissance, vulnerability discovery, and bug bounty hunting using industry-standard red team workflows and toolsets.

概要

This skill provides a comprehensive framework for security researchers to perform professional-grade penetration testing and bug bounty hunting within Claude. It implements proven methodologies from top researchers, covering the entire attack lifecycle from initial ASN discovery and subdomain enumeration to deep technology fingerprinting and automated XSS hunting. By integrating tools like Amass, Nuclei, and ffuf, it allows users to build robust reconnaissance pipelines and perform systematic application analysis using the Jason Haddix method to identify high-risk vulnerabilities and hidden attack surfaces.

主な機能

Application 'Heat Map' analysis based on the Jason Haddix methodology
Multi-source subdomain enumeration and live host discovery pipelines
0 GitHub stars
Deep content discovery and directory brute-forcing with ffuf and Seclists
Automated vulnerability scanning for XSS, CVEs, and misconfigurations using Nuclei
Automated API enumeration and hidden endpoint discovery workflows

ユースケース

Identifying and testing for web vulnerabilities like XSS, SSRF, and XXE
Automating attack surface mapping for corporate infrastructure
Executing structured reconnaissance phases for bug bounty programs

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front red-team-tools

For use in Claude.ai and ChatGPT

Download Skill

GitHub

概要