Summary
This is for when you're actually submitting bounty reports, not running a general security audit. It filters out the noise that platforms reject anyway: local-only deserialization, hardcoded shell commands, self-XSS, test files. Instead it focuses on remotely reachable paths like SSRF, auth bypass, SQL injection, and command injection where you can prove user input hits a dangerous sink. The workflow is practical: check scope first, find real entrypoints, trace the code path end to end, then build a minimal PoC. It includes a quality gate checklist and report template so you're not wasting time on duplicates or out-of-scope findings. Use this when the question is "will this pay?" not "is this theoretically unsafe?"
Install to Claude Code
npx -y skills add affaan-m/everything-claude-code --skill security-bounty-hunter --agent claude-codeInstalls into .claude/skills of the current project.
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Files
SKILL.md
Select a file.
Featured
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
