ReddRadar
Topic: bounty-hunters
49 skills in this topic.
-
subdomain-enumeration
Enumerates subdomains using CT logs, passive DNS, and search engine dorks
transilienceai/communitytools 129
-
certificate-transparency
Queries CT logs for certificates and extracts SANs for subdomain discovery
transilienceai/communitytools 129
-
cloud-infra-detector
Detects cloud providers (AWS, Azure, GCP) and PaaS platforms
transilienceai/communitytools 129
-
security-posture-analyzer
Analyzes security headers, CSP, HSTS, WAF presence, and security.txt
transilienceai/communitytools 129
-
html-content-analysis
Parses HTML for meta tags, generator comments, and script URL patterns
transilienceai/communitytools 129
-
signal_correlator
transilienceai/communitytools 129
-
system
System exploitation testing - Active Directory attacks, privilege escalation (Linux/Windows), and exploit development.
transilienceai/communitytools 129
-
source-code-scanning
Security-focused source code review and SAST. Scans for vulnerabilities (OWASP Top 10, CWE Top 25), CVEs in third-party dependencies/packages, hardcoded secrets, malicious code, and insecure patterns. Use when given source code, a repo path, or asked to "audit", "scan", "review" code security, or "check dependencies for CVEs".
transilienceai/communitytools 129
-
social-engineering
Social engineering testing - phishing, pretexting, vishing, and physical security assessment techniques.
transilienceai/communitytools 129
-
skiller
transilienceai/communitytools 129
-
code-repository-intel
Scans GitHub/GitLab for public repos, dependencies, and CI configurations
transilienceai/communitytools 129
-
frontend-inferencer
Infers frontend technologies including React, Angular, Vue, jQuery, Bootstrap, etc.
transilienceai/communitytools 129
-
http-fingerprinting
Analyzes HTTP responses for technology signatures in headers, cookies, and error pages
transilienceai/communitytools 129
-
ai-threat-testing
Offensive AI security testing and exploitation framework. Systematically tests LLM applications for OWASP Top 10 vulnerabilities including prompt injection, model extraction, data poisoning, and supply chain attacks. Integrates with pentest workflows to discover and exploit AI-specific threats.
transilienceai/communitytools 129
-
infrastructure
Network infrastructure testing - port scanning, DNS attacks, MITM, VLAN hopping, IPv6, SMB/NetBIOS, sniffing, and DoS assessment.
transilienceai/communitytools 129
-
hackthebox
HackTheBox platform automation - login via Playwright, browse challenges/machines/labs, manage VPN connections, solve challenges using pentest skills, log all proceedings, and feed learnings back into skill improvement.
transilienceai/communitytools 129
-
hackerone
HackerOne bug bounty automation - parses scope CSVs, deploys parallel pentesting agents for each asset, validates PoCs, and generates platform-ready submission reports. Use when testing HackerOne programs or preparing professional vulnerability submissions.
transilienceai/communitytools 129
-
github-workflow
GitHub workflow automation — branching, committing, pushing, pull requests, issues, and code review. Use when asked to commit, push, create PRs/branches/issues, or manage git workflow.
transilienceai/communitytools 129
-
confidence_scorer
transilienceai/communitytools 129
-
evidence_formatter
transilienceai/communitytools 129
-
report_exporter
transilienceai/communitytools 129
-
web-app-logic
Web application logic testing - business logic flaws, race conditions, access control, cache poisoning/deception, and information disclosure.
transilienceai/communitytools 129
-
client-side
Client-side vulnerability testing - XSS (reflected/stored/DOM), CSRF, CORS misconfiguration, Clickjacking, DOM-based attacks, and Prototype Pollution.
transilienceai/communitytools 129
-
authentication
Authentication security testing - auth bypass, JWT attacks, OAuth flaws, password attacks, 2FA bypass, CAPTCHA bypass, and bot detection evasion.
transilienceai/communitytools 129