β CISSP | OSWE | CSSLP | CπΈπSPβββ β AppSec Engineer βββββββββ β Security Researcher βββββββ β Full-stack Developer
ars0n-framework-v2. Bug Bounty Hunting Framework Designed to Help Beginners Compete w/ the Pros
676ars0n-framework. A Modern Framework for Bug Bounty Hunting
668Bug_Bounty_Notes. A collection of notes for bug bounty hunting
289bug-bounty-village-defcon32-workshop. The repo contains all the the notes, slides, and study material for my workshop at DEFCON 32 at the Bug Bounty Village
219Custom_Vuln_Scan_Templates. A collection of custom built scan templates for automated vuln scanning (nuclei, Burp, etc.)
50client-side-injections-part-2. Learning materials, vulnerable demo app, and scripts related to the Client-Side Injections Part II YouTube Video
34Wildfire-Toolkit. A collection of automation scripts for bug bounty hunting.
32Custom_Exploits. A collection of custom built scripts to exploit known vulnerability chains
27Clear-Sky. Bug Bounty Recon Automation Script -- Scan AWS IP Range Certs for Matching FQDN
26WAPT_Framework. A Web Application Penetration Testing Framework build in React with an Node/Express/MongoDB back-end
25ars0n-framework-v2-scan-data. A repo to store public scan data for my bug bounty hunting framework.
23cloud_enum. Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
17rs0n-bug-bounty-mcp-server. An MCP (Model Context Protocol) server that gives Claude Code access to a comprehensive bug bounty hunting knowledge base.
15OSWE-Methodology. Blank methodology sheet for the OSWE exam
13ars0n-framework-srt. A lightweight version of my bug bounty hunting framework designed to be run on Synack's LP+ machines.
12c-no-3v1l. Blind Cross-Site Scripting (XSS) Testing Tool For Bug Bounty Hunters Using AWS
11ars0n-framework-scans. A repository to store data from completed scans in The Ars0n Framework
9Bug_Scraper. A tool for bug bounty researchers to identify valid domains and urls in public HackerOne/BugCrowd programs
9AppSec-Labs. Files, notes, and walkthroughs for a variety of web application security labs (HTB, VulnLab, etc.)
9collect-bchecks. A simple bash script that downloads a collection of BChecks from various sources and consolidates them into a single directory.
9repoleak. A scanner for bug bounty hunters to find leaked secrets in public resources
9oauth-sniper. Tool to scan across multiple bug bounty programs for OAuth implementations
7Github_Brute-Dork. Python script designed to identify Github search terms that can yield potentially valuable results for security researchers and bug bounty hunters
6XSS-Filter-Bypass-Lab. A simple, intentionally vulnerable node application with a variety of Cross-Site Scripting vulnerabilities.
6Rs0ns-Coffee-Shop_Android_App_Files_Unpacked. Intentionally Vulnerable Mobile Application
6Juice-Shop-SAST-Test. Custom version of Juice Shop to test SAST tools
5BB-Disco. Automation script that monitors for new Bug Bounty programs on various platforms
5Meditations.
4Drifting_Embers. A Collection of Python Scripts used for Automated Vuln Scanning as part of my Bug Bounty Recon Methodology
4Damn_Vulnerable_Node_App. This node application is 1000% secure.
4Fire_Starter. Bug Bounty Recon Automation Script
4acog. Search across all public HackerOne programs for targets based on vulnerability class
4populate-burp. A go script designed to quickly populate Burpsuite from a list of URLs
3learning-go. A collection of scripts and applications I'm building as part of my effort to learn Go better
3DVWA-Blind-SQLi. A Blind SQLi Exploit Script for DVWA - Built for Demonstration Purposes
2The-Prospector. Full-stack Django application designed to help sales teams for service providers discover and track opportunities based on job postings.
2SQL_Injection-Instructional_Video. A short video that walks through the basic methodology for a SQL Injection attack.
2Example_Risk_Assessment. Example of an Asset Inventory and Risk Mitigation Strategy for a Hypothetical Security Company (Built Around NIST/FIPS Documentation)
2Exploit-Script-Template. A basic python script for web app pen testing -- I got tired of re-writing the same thing three times a week~
2Useful_Scripts. A collection of useful scripts that don't fit into any specific category
1Sophia. Python
1MERN-CheatSheet.
1SpringBoot-CheatSheet. Basic instructions for setting up a full-stack Spring Boot application
1Green-Energy. Stand-alone Prototype Pollution Scanner for Bug Bounties
1Run_JS. A simple go script to run Javascript on a target URL and return the result
1javasoup. Simple python library that uses puppeteer to pull HTML from a loaded SPA
1Rs0ns-Coffee-Shop_Spring-Boot-Backend. Intentionally Vulnerable Android Application
1Command_Injection-Instructional_Video. A short video showing the basic methodology of a command injection attack, as well ask how the attack can be leveraged to compromise a target server.
1Fire_Spreader. A Collection of Python Scripts used for phase II of my Bug Bounty Recon Methodology
1workshops. Notes for digital and live workshop planning
1Underground_Creamery_Automation. We're going to get some of that ice cream!!!
1websocket-fuzzer. A simple golang script that sends the same websocket message repeatedly to a single URI
1gcs. Configure Claude Code to identify when the user provides "Guidance" and store that information to be used in future prompts.
1