This is your work, valued

Houston, TX

rs0n

Elite
@R-s0n

β˜‘ CISSP | OSWE | CSSLP | C𝔸𝕀SP    β˜‘ AppSec Engineer           β˜‘ Security Researcher         β˜‘ Full-stack Developer

ars0n-framework-v2. Bug Bounty Hunting Framework Designed to Help Beginners Compete w/ the Pros

676

ars0n-framework. A Modern Framework for Bug Bounty Hunting

668

Bug_Bounty_Notes. A collection of notes for bug bounty hunting

289

bug-bounty-village-defcon32-workshop. The repo contains all the the notes, slides, and study material for my workshop at DEFCON 32 at the Bug Bounty Village

219

Custom_Vuln_Scan_Templates. A collection of custom built scan templates for automated vuln scanning (nuclei, Burp, etc.)

50

client-side-injections-part-2. Learning materials, vulnerable demo app, and scripts related to the Client-Side Injections Part II YouTube Video

34

Wildfire-Toolkit. A collection of automation scripts for bug bounty hunting.

32

Custom_Exploits. A collection of custom built scripts to exploit known vulnerability chains

27

Clear-Sky. Bug Bounty Recon Automation Script -- Scan AWS IP Range Certs for Matching FQDN

26

WAPT_Framework. A Web Application Penetration Testing Framework build in React with an Node/Express/MongoDB back-end

25

ars0n-framework-v2-scan-data. A repo to store public scan data for my bug bounty hunting framework.

23

cloud_enum. Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

17

rs0n-bug-bounty-mcp-server. An MCP (Model Context Protocol) server that gives Claude Code access to a comprehensive bug bounty hunting knowledge base.

15

OSWE-Methodology. Blank methodology sheet for the OSWE exam

13

ars0n-framework-srt. A lightweight version of my bug bounty hunting framework designed to be run on Synack's LP+ machines.

12

c-no-3v1l. Blind Cross-Site Scripting (XSS) Testing Tool For Bug Bounty Hunters Using AWS

11

ars0n-framework-scans. A repository to store data from completed scans in The Ars0n Framework

9

Bug_Scraper. A tool for bug bounty researchers to identify valid domains and urls in public HackerOne/BugCrowd programs

9

AppSec-Labs. Files, notes, and walkthroughs for a variety of web application security labs (HTB, VulnLab, etc.)

9

collect-bchecks. A simple bash script that downloads a collection of BChecks from various sources and consolidates them into a single directory.

9

repoleak. A scanner for bug bounty hunters to find leaked secrets in public resources

9

oauth-sniper. Tool to scan across multiple bug bounty programs for OAuth implementations

7

Github_Brute-Dork. Python script designed to identify Github search terms that can yield potentially valuable results for security researchers and bug bounty hunters

6

XSS-Filter-Bypass-Lab. A simple, intentionally vulnerable node application with a variety of Cross-Site Scripting vulnerabilities.

6

Rs0ns-Coffee-Shop_Android_App_Files_Unpacked. Intentionally Vulnerable Mobile Application

6

Juice-Shop-SAST-Test. Custom version of Juice Shop to test SAST tools

5

BB-Disco. Automation script that monitors for new Bug Bounty programs on various platforms

5

Meditations.

4

Drifting_Embers. A Collection of Python Scripts used for Automated Vuln Scanning as part of my Bug Bounty Recon Methodology

4

Damn_Vulnerable_Node_App. This node application is 1000% secure.

4

Fire_Starter. Bug Bounty Recon Automation Script

4

acog. Search across all public HackerOne programs for targets based on vulnerability class

4

populate-burp. A go script designed to quickly populate Burpsuite from a list of URLs

3

learning-go. A collection of scripts and applications I'm building as part of my effort to learn Go better

3

DVWA-Blind-SQLi. A Blind SQLi Exploit Script for DVWA - Built for Demonstration Purposes

2

The-Prospector. Full-stack Django application designed to help sales teams for service providers discover and track opportunities based on job postings.

2

SQL_Injection-Instructional_Video. A short video that walks through the basic methodology for a SQL Injection attack.

2

Example_Risk_Assessment. Example of an Asset Inventory and Risk Mitigation Strategy for a Hypothetical Security Company (Built Around NIST/FIPS Documentation)

2

Exploit-Script-Template. A basic python script for web app pen testing -- I got tired of re-writing the same thing three times a week~

2

Useful_Scripts. A collection of useful scripts that don't fit into any specific category

1

Sophia. Python

1

MERN-CheatSheet.

1

SpringBoot-CheatSheet. Basic instructions for setting up a full-stack Spring Boot application

1

Green-Energy. Stand-alone Prototype Pollution Scanner for Bug Bounties

1

Run_JS. A simple go script to run Javascript on a target URL and return the result

1

javasoup. Simple python library that uses puppeteer to pull HTML from a loaded SPA

1

Rs0ns-Coffee-Shop_Spring-Boot-Backend. Intentionally Vulnerable Android Application

1

Command_Injection-Instructional_Video. A short video showing the basic methodology of a command injection attack, as well ask how the attack can be leveraged to compromise a target server.

1

Fire_Spreader. A Collection of Python Scripts used for phase II of my Bug Bounty Recon Methodology

1

workshops. Notes for digital and live workshop planning

1

Underground_Creamery_Automation. We're going to get some of that ice cream!!!

1

websocket-fuzzer. A simple golang script that sends the same websocket message repeatedly to a single URI

1

gcs. Configure Claude Code to identify when the user provides "Guidance" and store that information to be used in future prompts.

1