src-hunter-skill — Claude Skill by MyuriKanao

Last updated: 2026-05-24 · Indexed by AgentSkillsHub · Auto-synced every 8h

About src-hunter-skill

中文 · English src-hunter 这是一个给 SRC、众测和 Bug bounty 用的 Claude Code skill。简单说，就是你给它一个目标，它会按一套固定流程帮你推进漏洞挖掘：先确认目标范围，再做信息收集和资产枚举，然后进入漏洞测试，最后整理报告。项目内置了一批从公开来源整理的知识库，包括： 19 类攻击 playbook 305 个结构化 payload WAF / EDR 绕过变体 HackerOne 已披露 High / Critical hacktivity 数据 WooYun 历史案例统计残余常见国产组件指纹和默认凭据安装 Marketplace： Git：目录结构 playbook 是主要入口。所有 playbook 都按黑盒视角编写，默认你只有 URL，没有源码。每个 playbook 都围绕同一套问题展开：去哪里找入口用什么 payload 测观察哪些响应特征如何判断影响如何提高漏洞价值哪些行为不能做整体思路不是堆 payload，而是把测试动作、证据留存和报告输出串起来。 MCP 工具集成本 skill 集成本地 MCP 服务器作为工具层，让 Claude 在 hunt 阶段能直接调用浏览器自动化、CDP 调试、网络拦截、JS hook、AST 反混淆、Frida 内存验证、WASM 逆向、Source map 重构、Android adb 桥接、SSL pinning 绕过等能力。当前主选：jshookmcp 0.3.0（134 工具精选 / 386 全集 / 36 域），完整索引与场景映射见。 7 个高关联 playbook（ /

bug-bounty claude-code claude-code-skill hackerone owasp payloads pentesting red-team security src

Quick Facts

Stars	201
Forks	32
Category	Claude Skill
License	MIT
Quality Score	33.35/100
Open Issues	1
Last Updated	2026-05-24
Created	2026-05-09
Platforms	claude-code
Est. Tokens	~1042k

Compatible Skills

These tools work well together with src-hunter-skill for enhanced workflows:

h1-brain — semantic(0.58)+complementary+rare_topics+shared_platform (59%)
claude-bug-bounty — semantic(0.47)+complementary+rare_topics+shared_platform (55%)
pentest-agents — semantic(0.45)+complementary+rare_topics+shared_platform (55%)

src-hunter-skill alternative? Top 6 similar tools

Looking for a src-hunter-skill alternative? If you're comparing src-hunter-skill with other claude skill tools, these 6 projects are the closest alternatives on Agent Skills Hub — ranked by topic overlap, star count, and community traction.

pentest-ai by 0xSteph · ⭐ 827
Offensive-security MCP server with 205 wrapped tools, 17 specialist agents, and 60 SPA-aware probes for OWASP
pentest-agents by H-mmer · ⭐ 711
Bug bounty agent framework for Claude Code, Codex, Gemini, Cursor, Windsurf, Copilot, and OpenClaw — 48 agents
h1-brain by PatrikFehrenbach · ⭐ 251
MCP server that connects AI assistants to HackerOne for bug bounty hunting
Fray by dalisecurity · ⭐ 53
AI-native security toolkit — fray go target.com scans everything. 7,800+ payloads, 98 WAF vendors, 42+ recon c
reconmap by reconmap · ⭐ 933
Reconmap is a collaboration-first security operations platform for infosec teams and MSSPs, enabling end‑to‑en
CyberStrike by CyberStrikeus · ⭐ 571
AI-powered offensive security agent with 7,300+ actionable security skills. Autonomous pentesting powered by M

More Claude Skill Tools

Explore other popular claude skill tools:

claude-codex-settings ⭐ 707
claude-seo ⭐ 8.8k
life-sciences ⭐ 345
claude-ai-mcp ⭐ 322
pilot-shell ⭐ 1.8k
claude-plugins-official ⭐ 30.5k
skyll ⭐ 222
digital-marketing-pro ⭐ 147
awesome-claude-code ⭐ 41.5k
planning-with-files ⭐ 23.4k

View all Claude Skill tools →

Frequently Asked Questions

What is src-hunter-skill?

src-hunter-skill is 实战 SRC / 众测 / Bug bounty 漏洞挖掘 Claude Code skill — 19 个攻击类 playbook、305 个结构化 payload、263 个 WAF/EDR 绕过、2887 份 HackerOne 真实案例、88,636 WooYun 案例统计. It is categorized as a Claude Skill with 201 GitHub stars.

How do I install or use src-hunter-skill?

You can find installation instructions and usage details in the src-hunter-skill GitHub repository at github.com/MyuriKanao/src-hunter-skill. The project has 201 stars and 32 forks, indicating an active community.

What license does src-hunter-skill use?

src-hunter-skill is released under the MIT license, making it free to use and modify according to the license terms.

What are the best alternatives to src-hunter-skill?

The top alternatives to src-hunter-skill on Agent Skills Hub include pentest-ai, pentest-agents, h1-brain. Each offers a different approach to the same problem space — compare them side-by-side by stars, quality score, and community activity.

View on GitHub → Browse Claude Skill tools