Is this skill suitable for professional bug bounty hunters?

Yes, it implements proven methodologies used by top hunters, including comprehensive subdomain enumeration and heat-map-based application analysis.

Does this skill require specific environmental setup?

Yes, for the commands to execute, you typically need a Linux-based environment (like Kali or Ubuntu) with Go, Python, and the relevant security tools installed.

What is the Red Team Tools skill for Claude Code?

It is a specialized capability that provides Claude with structured workflows and tool configurations for security researchers, enabling automated reconnaissance and vulnerability discovery.

Which security tools are supported by this skill?

The skill includes configurations and workflows for industry-standard tools such as Amass, Subfinder, Nuclei, httpx, ffuf, Dalfox, and ParamSpider.

Red Team Methodology & Tools

Name: Red Team Methodology & Tools
Author: claudiodearaujo

byclaudiodearaujo

Security & Testing

Automates comprehensive security reconnaissance, vulnerability discovery, and bug bounty hunting workflows using industry-standard penetration testing tools.

About

This skill equips Claude with specialized workflows for security researchers and red teamers, focusing on the proven methodology for asset discovery and vulnerability assessment. It provides structured commands and automation scripts for subdomain enumeration, live host discovery, technology fingerprinting, and targeted hunting for XSS and API vulnerabilities. Whether you are performing a professional security audit or participating in a bug bounty program, this skill streamlines the transition from initial reconnaissance to documented findings by implementing the techniques of top security researchers.

Key Features

Automated XSS hunting pipelines using Dalfox and ParamSpider
Comprehensive content discovery and directory brute-forcing via ffuf
Live host discovery and technology stack fingerprinting with httpx and Nuclei
Structured project tracking and Jason Haddix-inspired application analysis
Multi-stage subdomain enumeration using Amass, Subfinder, and Assetfinder
0 GitHub stars

Use Cases

Identifying hidden API endpoints and testing for common web vulnerabilities
Performing a vulnerability assessment on a defined range of corporate IP addresses
Automating the initial reconnaissance phase of a bug bounty program

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/izacenter red-team-tools

For use in Claude.ai and ChatGPT

Download Skill

GitHub