Automated Pipeline for Vulnerability Discovery
A new open source tool named BugHunter is streamlining bug bounty operations by automating the full vulnerability discovery and reporting pipeline. Built on Anthropic’s Claude Code and now supporting free AI providers, the toolkit handles subdomain enumeration, live host discovery, and vulnerability testing across more than 20 Web2 and 10 Web3 bug classes. Researchers can execute the entire workflow from a single terminal command.
The toolkit validates findings through a structured 7 Question Gate process designed to eliminate weak or duplicate submissions early. It generates platform specific reports formatted for HackerOne, Bugcrowd, Intigriti, and Immunefi, saving researchers significant manual effort.
Expanded Access Through Free Provider Support
BugHunter previously required a paid Claude Code or Claude Pro subscription. The latest update adds support for free and low cost AI providers, dramatically lowering the barrier to entry. Supported options include Ollama for fully offline local operation, Groq with a free cloud tier offering fast inference, DeepSeek at roughly $0.001 per 1,000 tokens, and paid Claude API or OpenAI models for those who prefer them.
The system auto detects available providers in priority order, defaulting to the most cost efficient option. Researchers can switch providers at any time through a simple setup command. The toolkit also integrates approximately 35 scanning tools including subfinder, httpx, nuclei, katana, ffuf, and dalfox, with missing tools handled gracefully rather than causing errors.
A notable technical feature is cross session memory persistence. BugHunter logs findings and discovered patterns to a JSONL based memory store, enabling contextual awareness across multiple hunting sessions.
Source: Cyber Security News
