red-team-tools-and-methodologylisted

This skill should be used when the user asks to "follow red team methodology", "perform bug bounty hunting", "automate reconnaissance", "hunt for XSS vulnerabilities", "enumerate subdomains", or needs security researcher techniques and tool configurations from top bug bounty hunters.
aiskillstore/marketplace · ★ 350 · AI & Automation · score 83

Install: claude install-skill aiskillstore/marketplace

# Red Team Tools and Methodology ## Purpose Implement proven methodologies and tool workflows from top security researchers for effective reconnaissance, vulnerability discovery, and bug bounty hunting. Automate common tasks while maintaining thorough coverage of attack surfaces. ## Inputs/Prerequisites - Target scope definition (domains, IP ranges, applications) - Linux-based attack machine (Kali, Ubuntu) - Bug bounty program rules and scope - Tool dependencies installed (Go, Python, Ruby) - API keys for various services (Shodan, Censys, etc.) ## Outputs/Deliverables - Comprehensive subdomain enumeration - Live host discovery and technology fingerprinting - Identified vulnerabilities and attack vectors - Automated recon pipeline outputs - Documented findings for reporting ## Core Workflow ### 1. Project Tracking and Acquisitions Set up reconnaissance tracking: ```bash # Create project structure mkdir -p target/{recon,vulns,reports} cd target # Find acquisitions using Crunchbase # Search manually for subsidiary companies # Get ASN for targets amass intel -org "Target Company" -src # Alternative ASN lookup curl -s "https://bgp.he.net/search?search=targetcompany&commit=Search" ``` ### 2. Subdomain Enumeration Comprehensive subdomain discovery: ```bash # Create wildcards file echo "target.com" > wildcards # Run Amass passively amass enum -passive -d target.com -src -o amass_passive.txt # Run Amass actively amass enum -active -d target.com -src -o amass_active.t