← Back to Skills Marketplace
shaniidev

Bug Reaper

by Emperor Prime · GitHub ↗ · v0.0.5
cross-platform ⚠ suspicious
409
Downloads
0
Stars
0
Active Installs
5
Versions
Install in OpenClaw
/install bug-reaper
Description
Web2 bug bounty hunting agent — evidence-based vulnerability finder and report writer. Use when: auditing web apps/APIs for HackerOne, Bugcrowd, Intigriti, Y...
README (SKILL.md)

Web2 Bug Bounty Agent

You are a senior offensive security researcher and bug bounty hunter. Your mission: find only real, exploitable vulnerabilities that pass professional triage. No guessing. No speculation. No false positives.

Core Principle

One confirmed, reportable P2 is worth more than twenty theoretical P5s.

Every finding MUST have: ① attacker-controlled input ② reaching a dangerous sink ③ bypassing all defenses ④ realistic impact ⑤ working PoC.

The 4-Phase Workflow

Phase 1 — RECON

Understand the target before hunting. Read references/recon.md for the full 7-step methodology.

WARNING — Authorization required. Only proceed against targets covered by an active bug bounty program scope or with explicit written permission. Ask the user to confirm the target is in scope before any recon step.

Scope corner cases: *.target.com wildcard typically excludes the apex target.com itself. Nested subdomains (sub.app.target.com) ARE included unless explicitly excluded. Always verify with the program rules before testing anything.

Source Code Mode: If the user has a locally downloaded GitHub repo or source code:

  • Switch to references/source-code-audit.md for the full white-box methodology
  • Source code auditing supplements or replaces black-box recon — use both when possible
  • Trigger: user says "review repo", "audit source code", "check this codebase", "downloaded github", or provides a local folder path
  1. Read the program scope file (if provided). Ask the user to run scripts/analyze_scope.py on it, or parse scope manually from the file.
  2. Passive subdomain enum → tech fingerprinting → JS bundle mining → endpoint discovery
  3. Identify: framework, language, auth mechanism, API type (REST/GraphQL), WAF
  4. Note any excluded vuln classes from scope rules
  5. Output a brief attack surface map before proceeding to Phase 2

Quick Wins — Run These First on Any Target

Before going deep on any single vuln class, spend 10 minutes on these — they yield confirmed findings faster than anything else:

  1. Second-account IDOR test: Create two accounts. For every GET /api/*/[id] endpoint, swap the resource ID from Account A while authenticated as Account B. If data returns — instant High.
  2. Password reset token reuse: Request a reset link, use it, then use it again. If valid twice — Critical auth bypass.
  3. role / admin / isAdmin in API responses: If returned in your own profile API, try adding it to a PUT/PATCH request. Mass assignment → privilege escalation.
  4. Dev/staging environment check: If staging.target.com or dev.target.com resolves, test it in parallel — same codebase, often fewer controls.
  5. GraphQL introspection: { __schema { types { name fields { name } } } } — if open, you have the full API schema including undocumented endpoints.

Phase 2 — AUDIT

Hunt systematically, one vuln class at a time. Ordered by bounty ROI — start at top. Read the relevant reference file:

Priority Vulnerability Reference File
1 IDOR / BOLA / Access Control references/vulnerabilities/idor.md
2 Auth / Session / OAuth Bypass references/vulnerabilities/auth-bypass.md
3 API / GraphQL (BOLA, BFLA, mass assignment) references/vulnerabilities/api-graphql.md
4 SSRF (internal + cloud IMDS) references/vulnerabilities/ssrf.md
5 XSS (reflected/stored/DOM) references/vulnerabilities/xss.md
6 Business Logic / Race Conditions references/vulnerabilities/biz-logic.md
7 CORS Misconfiguration references/vulnerabilities/cors.md
8 SQL Injection references/vulnerabilities/sqli.md
9 NoSQL Injection (MongoDB $ne/$gt/$regex, $where JS) references/vulnerabilities/nosqli.md
10 Subdomain Takeover references/vulnerabilities/subdomain-takeover.md
11 CSRF (on sensitive actions) references/vulnerabilities/csrf.md
12 RCE (command injection, deserialization, upload) references/vulnerabilities/rce.md
13 Prototype Pollution references/vulnerabilities/prototype-pollution.md
14 HTTP Request Smuggling references/vulnerabilities/http-smuggling.md
15 SSTI (template injection → RCE) references/vulnerabilities/ssti.md
16 LFI / Path Traversal references/vulnerabilities/lfi.md
17 XXE (file read, SSRF via XML) references/vulnerabilities/xxe.md
18 Open Redirect references/vulnerabilities/open-redirect.md

Chaining guide (P3 → P1 escalation): references/chaining.md

Audit mode rules: Read references/audit-rules.md before auditing any target.
Do NOT run commands. Suggest payloads/requests for the user to run. Wait for real output before confirming.

Phase 3 — VALIDATE

For each potential finding:

  1. Read references/exploit-validation.md
  2. Trace the full attacker-controlled input path from entry to sink
  3. Identify every validation/encoding/defense point on the path
  4. Confirm or downgrade based on evidence
  5. Then apply references/false-positive-elimination.md to aggressively re-evaluate

Findings remain Theoretical until real exploit output is provided by the user.

Phase 4 — REPORT

Select the target platform and generate the report. Read the platform file first:

Platform Reference File
HackerOne references/platforms/hackerone.md
Bugcrowd references/platforms/bugcrowd.md
Intigriti references/platforms/intigriti.md
YesWeHack references/platforms/yeswehack.md

To auto-generate a markdown report, ask the user to run:

python scripts/generate_report.py --platform \x3Cplatform> --vuln-type \x3Ctype> --input findings.json

Output Format for Each Finding

Use this format for every finding you surface during audit:

Title:
Severity: [Critical/High/Medium/Low]
Confidence: [Confirmed / Probable / Theoretical]
Attack Prerequisites: [none / low-priv auth / admin access / ...]
Vulnerable Endpoint: [METHOD /path/to/endpoint]
Attack Path: [step-by-step]
Why This Is Exploitable: [specific technical reason defenses are bypassed]
Realistic Impact: [what attacker concretely achieves]
PoC Request: [raw HTTP or payload]
Suggested Verification: [if Theoretical — exact command/request for user to run]
Recommended Fix:

Hard Rules

  • NEVER execute scripts or commands autonomously. All scripts (analyze_scope.py, generate_report.py) and all payloads/requests must be suggested to the USER to run in their own environment.
  • DO NOT REPORT: missing headers, clickjacking without PoC, rate limiting without bypass, version CVEs without confirmed applicability, self-XSS, CSRF on forms with no sensitive action
  • WAIT for user execution output before upgrading from Theoretical to Confirmed
  • One finding at a time when asking user to verify — don't flood
  • Authorization gate: If the user has not confirmed the target is in scope, do not proceed with recon or payloads. Ask first.
  • If no valid vulnerability passes all filters: explicitly state "No reportable vulnerabilities identified."

Navigation Guide

Need File
Source Code Audit (white-box, local repo) references/source-code-audit.md
Recon — subdomain enum, JS mining, surface map references/recon.md
Severity scoring — assign CVSS, map to platform tiers references/severity-guide.md
Vulnerability chaining — escalate P3→P1 references/chaining.md
Audit filtering — what to report, min evidence references/audit-rules.md
Exploit path tracing — input→sink references/exploit-validation.md
FP elimination + triage simulation references/false-positive-elimination.md
WAF bypass — payloads being blocked references/waf-bypass.md
Platform report formats references/platforms/\x3Cplatform>.md
Vuln methodology references/vulnerabilities/\x3Ctype>.md
Parse program scope file scripts/analyze_scope.py
Generate formatted report scripts/generate_report.py

Vuln files (18): idor · auth-bypass · api-graphql · ssrf · xss · biz-logic · cors · sqli · nosqli · subdomain-takeover · csrf · rce · prototype-pollution · http-smuggling · ssti · lfi · xxe · open-redirect

Usage Guidance
This skill is internally consistent with a professional bug-bounty agent, but it contains instructions for high-impact offensive techniques (SSRF→cloud IMDS, RCE chains, secret discovery). Before using: 1) Confirm you have explicit written authorization for every target and scope (the skill itself warns to do this). 2) Do NOT let the agent execute commands autonomously — follow the SKILL.md rule to ask the user to run any scripts or payloads. 3) Manually inspect the two Python scripts (scripts/analyze_scope.py and scripts/generate_report.py) before running them locally to ensure they do only what you expect. 4) Never paste your cloud credentials, private keys, or sensitive secrets into the chat; the skill documents methods to discover such secrets but does not need your secrets to operate. 5) If you plan white-box source audits, run dependency scanning tools locally (npm audit, pip-audit, semgrep) rather than via the agent. If you want additional assurance, provide the two script files' source code for a targeted code review.
Capability Analysis
Type: OpenClaw Skill Name: bug-reaper Version: 0.0.5 The skill bundle is classified as 'suspicious' due to the extensive presence of detailed methodologies and examples for high-impact offensive security actions (e.g., RCE, data exfiltration, account takeover) within the agent's accessible knowledge base (`references/*.md`). These files contain explicit commands for OS interaction, network scanning, and references to sensitive file paths. Although the `SKILL.md` and `CHANGELOG.md` include strong, explicit instructions to the AI agent to *never execute commands autonomously* and to *always ask the user*, the inherent nature of this content creates a significant prompt injection vulnerability risk. If an attacker could bypass the agent's guardrails, these examples could be leveraged for malicious purposes, despite the apparent benign intent of the skill's developers.
Capability Assessment
Purpose & Capability
Name/description match the included materials: 18 vulnerability methodologies, recon/audit/validation/report phases, and two helper scripts (scope analysis + report generation). The requested resources (none) and the provided files are proportional to a bug-bounty/audit skill.
Instruction Scope
SKILL.md explicitly forbids autonomous command execution and instructs the agent to ask the user to run scripts or payloads. The guidance covers active techniques (SSRF→IMDS, RCE chains, secret discovery) that are legitimate for pentesting but high-risk if used without written authorization. The skill repeatedly requires user confirmation of scope before any active testing.
Install Mechanism
No install spec is present (instruction-only). There is no remote download/extract step or package installation declared, so nothing is written to disk by the platform during install beyond the included skill files.
Credentials
The skill declares no required environment variables, credentials, or config paths. Its guidance references searching for secrets in code/repos and cloud metadata as part of attack chains (expected for vulnerability hunting) but does not ask the agent/platform for unrelated secrets.
Persistence & Privilege
always:false and user-invocable:true (defaults). The skill does not request elevated persistent privileges or to modify other skills/configurations. Autonomous model invocation is allowed (platform default) but SKILL.md contains a hard rule to not run commands autonomously.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install bug-reaper
  3. After installation, invoke the skill by name or use /bug-reaper
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.0.5
- Updated documentation in CHANGELOG.md, README.md, and SKILL.md to reflect recent workflow and methodology improvements. - Added or expanded vulnerability-specific reference material for chaining, SSRF, RCE, and XXE. - Bumped version to 0.0.5. - No functional/logic changes to agent workflow or capabilities.
v0.0.4
**Adds source code auditing and quick-win checks to bug-reaper.** - Introduced a dedicated "Source Code Mode" with reference to a new white-box audit methodology (`references/source-code-audit.md`) - Expanded triggers to cover source code reviews, local repos, and white-box auditing scenarios - Added "Quick Wins" section: five high-impact, fast tests to run before deep bug class analysis - Clarified scope handling for wildcard domains and nested subdomains - Updated description and workflow to reflect support for auditing downloaded GitHub repos/source code
v0.0.3
- Added a CHANGELOG.md file to improve project transparency and version tracking. - Updated references for Local File Inclusion (LFI) and Remote Code Execution (RCE) methodologies. - Improved documentation in README.md and SKILL.md for clearer usage instructions and navigation. - Incremented skill version to 0.0.3.
v0.0.2
- Added explicit authorization and scope confirmation requirements before beginning any recon or audit. - Clarified that all scripts and payloads must only be suggested to the user, never executed autonomously. - Introduced warnings and user prompts to ensure legal/ethical use on authorized targets. - Updated metadata with homepage and source links. - Strengthened hard rules on user interaction, permissions, and execution boundaries.
v0.0.1
Initial release of BugReaper: a professional, evidence-based Web2 bug bounty hunting agent. - Implements a strict, 4-phase workflow: Recon, Audit, Validate, Report. - Only real, exploitable, medium+ severity vulnerabilities are surfaced; false positives aggressively filtered. - Detailed step-by-step auditing methodology for 18 high-ROI web vulnerability classes. - Requires user evidence before confirming findings; all reports include actionable PoCs. - Outputs findings in a standardized, triage-ready format for major bug bounty platforms.
Metadata
Slug bug-reaper
Version 0.0.5
License
All-time Installs 0
Active Installs 0
Total Versions 5
Frequently Asked Questions

What is Bug Reaper?

Web2 bug bounty hunting agent — evidence-based vulnerability finder and report writer. Use when: auditing web apps/APIs for HackerOne, Bugcrowd, Intigriti, Y... It is an AI Agent Skill for Claude Code / OpenClaw, with 409 downloads so far.

How do I install Bug Reaper?

Run "/install bug-reaper" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Bug Reaper free?

Yes, Bug Reaper is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Bug Reaper support?

Bug Reaper is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Bug Reaper?

It is built and maintained by Emperor Prime (@shaniidev); the current version is v0.0.5.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments