from claude-bughunter231
A five-phase bug-hunting workflow and critical-thinking playbook that orients security hunting sessions, maps steps from recon to report, and enforces quality g
Provides a comprehensive, practice-oriented methodology for bug bounty and red-team sessions. The skill defines a five-phase non-linear workflow (Recon, Map, Find, Prove, Report) plus session-start checks and hard quality gates (marker discipline, body-diff, statistical sampling). It is designed to orchestrate hunting sessions and route to more focused hunt-* skills.
Use at the start of any security testing session, when switching targets or techniques, or when the operator is unsure what to do next. Also useful as an orchestrator when a user asks for 'what should I do next' or requests guidance across phases.
Targets security-focused agent runtimes that support long-form procedural guidance and slash commands (Claude Code, other code-capable assistants). It is intended for operators running automated and manual tooling in tandem.
This skill has not been reviewed by our automated audit pipeline yet.
