Skip to content

hamzazakakhan/BountyMaster

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

5 Commits
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 

Repository files navigation

BountyMaster

An AI-powered bug bounty CLI tool that leverages Kali Linux penetration testing tools, OpenAI for intelligent exploit generation, and automated vulnerability scanning based on the OWASP Top 10 framework.

Features

  • 🎯 OWASP Top 10 Vulnerability Detection

    • Broken Access Control
    • Remote Code Execution (RCE)
    • Injection (SQL, Command, LDAP, etc.)
    • Insecure Design
    • Security Misconfiguration
    • Account Takeover (ATO)
    • Vulnerable and Outdated Components
    • Identification and Authentication Failures
    • Software and Data Integrity Failures
    • Server-Side Request Forgery (SSRF)
    • Cross-Site Scripting (XSS)
    • Cryptographic Failures
  • πŸ€– AI-Powered Exploit Generation

    • Uses OpenAI API to generate custom exploits based on discovered vulnerabilities
    • Intelligent payload crafting and testing
    • Automated proof-of-concept generation
  • 🎯 Metasploit Framework Integration

    • Automated Metasploit module search for discovered vulnerabilities
    • AI-powered module selection based on exploit rank and relevance
    • Automatic exploitation with session management
    • Support for CVE-based and type-based exploit matching
  • πŸ”§ Kali Linux Tools Integration

    • Nmap for reconnaissance and port scanning
    • SQLMap for SQL injection testing
    • Nikto for web server scanning
    • Dirb/Dirbuster for directory enumeration
    • Metasploit integration for exploit testing
    • And many more...
  • πŸ“Š NVD CVE Database Integration

    • Automatic CVE lookup for identified software versions
    • Vulnerability scoring and severity assessment
    • Historical vulnerability tracking
  • 🧠 Intelligent URL Analysis

    • ML-based pattern recognition to predict vulnerability types
    • Smart parameter detection
    • Automated attack surface mapping
  • 🌐 Exploit Database Scraping

    • Real-time exploit collection from Exploit-DB
    • PacketStorm Security integration
    • Local caching for offline use
  • πŸ“ Comprehensive Reporting

    • Detailed vulnerability reports
    • Steps to reproduce
    • Severity ratings based on CVSS
    • Remediation recommendations
    • Export to HTML, PDF, JSON

Prerequisites

System Requirements

  • Operating System: Kali Linux (recommended) or any Linux distribution with penetration testing tools
  • Python: 3.9 or higher
  • Tools: Ensure the following Kali tools are installed:
    sudo apt-get update
    sudo apt-get install -y nmap sqlmap nikto dirb metasploit-framework hydra wpscan

API Keys

  • OpenAI API Key: Optional - Only needed for AI exploit generation (Get API Key)
    • Without this, the tool still works with Metasploit and basic scanning
    • Metasploit module selection will use heuristic-based ranking instead of AI
  • NVD API Key: Optional - Recommended for faster CVE lookups (Request API Key)

Installation

1. Clone the repository

git clone https://github.com/yourusername/bountymaster.git
cd bountymaster

2. Create virtual environment

python3 -m venv venv
source venv/bin/activate  # On Windows: venv\Scripts\activate

3. Install dependencies

pip install -r requirements.txt

4. Configure environment variables

cp .env.example .env
# Edit .env and add your API keys
nano .env

5. Install the CLI tool

pip install -e .

Usage

Basic Scan

bugbounty scan --target https://example.com

Scan with specific vulnerability types

bugbounty scan --target https://example.com --types xss,sqli,rce

Full penetration test with AI exploit generation and Metasploit

bugbounty pentest --target https://example.com --ai-exploits --metasploit --intensity high

Pentest without Metasploit (manual testing only)

bugbounty pentest --target https://example.com --no-metasploit --intensity medium

URL Intelligence Analysis

bugbounty analyze-url --url "https://example.com/admin.php?id=123&user=admin"

Generate CVE Report

bugbounty cve-scan --target https://example.com --output report.html

Update Exploit Database

bugbounty update-exploits

Generate Report from Previous Scan

bugbounty report --scan-id abc123 --format pdf --output vulnerability_report.pdf

Command Reference

Main Commands

Command Description
scan Perform vulnerability scan on target
pentest Full penetration test with exploit generation
analyze-url Intelligent URL vulnerability prediction
cve-scan Check for known CVEs in target software
update-exploits Update local exploit database
report Generate comprehensive vulnerability report
config Manage configuration and API keys

Scan Options

Option Description
--target URL Target URL or IP address
--types TYPES Comma-separated list of vulnerability types
--intensity LEVEL Scan intensity: low, medium, high, extreme
--ai-exploits Enable AI-powered exploit generation
--threads N Number of concurrent threads (default: 10)
--timeout N Request timeout in seconds (default: 30)
--output FILE Save results to file
--format FORMAT Output format: json, html, pdf, markdown

Configuration

Edit the .env file to configure:

OPENAI_API_KEY=sk-...
NVD_API_KEY=...
MAX_THREADS=10
TIMEOUT_SECONDS=30
RATE_LIMIT_DELAY=1
EXPLOIT_DB_UPDATE_INTERVAL=86400
CACHE_EXPIRY_DAYS=7
LOG_LEVEL=INFO

Architecture

bug-bounty-cli/
β”œβ”€β”€ src/
β”‚   β”œβ”€β”€ main.py              # CLI entry point
β”‚   β”œβ”€β”€ config.py            # Configuration management
β”‚   β”œβ”€β”€ scanner/
β”‚   β”‚   β”œβ”€β”€ base_scanner.py  # Base scanner class
β”‚   β”‚   β”œβ”€β”€ xss_scanner.py   # XSS detection
β”‚   β”‚   β”œβ”€β”€ sqli_scanner.py  # SQL injection
β”‚   β”‚   β”œβ”€β”€ rce_scanner.py   # RCE detection
β”‚   β”‚   └── ...
β”‚   β”œβ”€β”€ ai/
β”‚   β”‚   β”œβ”€β”€ exploit_generator.py  # OpenAI integration
β”‚   β”‚   └── prompt_templates.py   # AI prompts
β”‚   β”œβ”€β”€ nvd/
β”‚   β”‚   └── cve_client.py    # NVD API client
β”‚   β”œβ”€β”€ intelligence/
β”‚   β”‚   └── url_analyzer.py  # ML-based URL analysis
β”‚   β”œβ”€β”€ exploits/
β”‚   β”‚   β”œβ”€β”€ scraper.py       # Exploit database scraper
β”‚   β”‚   └── cache.py         # Local exploit cache
β”‚   β”œβ”€β”€ testing/
β”‚   β”‚   └── exploit_executor.py  # Safe exploit testing
β”‚   └── reporting/
β”‚       └── report_generator.py  # Report generation
β”œβ”€β”€ tests/
β”œβ”€β”€ docs/
└── requirements.txt

Security Considerations

⚠️ WARNING: This tool is designed for authorized security testing only. Unauthorized access to computer systems is illegal.

  • Always obtain written permission before testing
  • Use only on systems you own or have explicit authorization to test
  • Be aware of the legal implications in your jurisdiction
  • Follow responsible disclosure practices
  • Do not use for malicious purposes

Contributing

Contributions are welcome! Please read our contributing guidelines and code of conduct.

License

MIT License - See LICENSE file for details

Disclaimer

This tool is provided for educational and authorized security testing purposes only. The developers assume no liability for misuse or damage caused by this program.

Support

For issues, questions, or contributions:

Acknowledgments

  • OWASP Foundation for the OWASP Top 10 framework
  • Kali Linux project for penetration testing tools
  • OpenAI for AI capabilities
  • NVD for vulnerability database
  • Security research community

About

No description, website, or topics provided.

Resources

Stars

0 stars

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages