Open-source Claude Code skills for AI-powered penetration testing, bug bounty hunting, and security research. Benefits security teams, bounty hunters, and researchers. Integrates with HackerOne and other security tools.
git clone https://github.com/transilienceai/communitytools.gitThe communitytools skill is an open-source resource designed for AI-powered penetration testing, bug bounty hunting, and security research. By leveraging Claude Code, this skill enables users to automate various tasks associated with identifying vulnerabilities and securing applications. It includes agents and slash commands that streamline the workflow, making it easier for developers and security professionals to focus on critical tasks rather than repetitive ones. One of the key benefits of communitytools is its potential to save time during the security assessment process. Although specific time savings are not quantified, the automation of routine tasks can significantly enhance productivity, allowing security researchers to dedicate more time to complex problem-solving and analysis. This skill is particularly beneficial for those in security-focused roles, such as penetration testers and security analysts, who require efficient tools to manage their workload. Developers, product managers, and AI practitioners involved in security research will find communitytools invaluable. The skill is designed for users with an intermediate level of expertise, making it suitable for those who are comfortable with automation tools but may not be experts in security. Practical use cases include automating vulnerability scans, managing bug bounty submissions, and conducting security assessments more efficiently. For instance, a penetration tester could use communitytools to automate the initial reconnaissance phase of a security assessment, allowing for faster identification of potential vulnerabilities. Implementation of communitytools is straightforward, requiring approximately 30 minutes to set up. Users should have a basic understanding of AI automation and penetration testing concepts. This skill integrates seamlessly into AI-first workflows, enabling teams to enhance their security posture while maximizing efficiency. As organizations increasingly adopt AI-driven solutions, incorporating communitytools into security practices can lead to more robust and proactive security measures.
1. **Install communitytools:** - Clone the repository: `git clone https://github.com/anthropics/communitytools.git` - Install dependencies: `pip install -r requirements.txt` - Configure API keys for tools like Nuclei (e.g., `nuclei -update-templates`). 2. **Prepare Your Target:** - Replace `[TARGET_DOMAIN]` with the domain you’re assessing (e.g., `acmecorp.com`). - Ensure you have permission to test the target (legal/ethical considerations). - Adjust `[SECURITY_TEAM]` to the email or team responsible for remediation. 3. **Run the Scan:** - Execute the prompt in your AI assistant (e.g., Claude/ChatGPT). - Monitor progress in real-time. The AI will chain tools like Nmap, Sublist3r, and Nuclei automatically. 4. **Review and Act:** - Use the generated report to prioritize vulnerabilities by CVSS score. - Assign remediation tasks to the appropriate teams (e.g., DevOps for patching). - For complex issues, use the report to guide manual testing or deeper analysis. 5. **Automate Future Scans:** - Save the prompt as a reusable template in your AI assistant. - Schedule periodic scans (e.g., weekly) using cron jobs or GitHub Actions. - Integrate with tools like HackerOne by exporting findings to their API. **Tips for Better Results:** - **Customize Scope:** Limit scans to specific subnets (e.g., `192.168.1.0/24`) to avoid false positives. - **False Positive Reduction:** Use `-silent` flags for tools like Nuclei to filter noise. - **Collaboration:** Share the report with your security team via Slack/email for immediate action.
No install command available. Check the GitHub repository for manual installation instructions.
git clone https://github.com/transilienceai/communitytoolsCopy the install command above and run it in your terminal.
Launch Claude Code, Cursor, or your preferred AI coding agent.
Use the prompt template or examples below to test the skill.
Adapt the skill to your specific use case and workflow.
Act as an AI-powered security researcher using [communitytools] to automate penetration testing for [TARGET_DOMAIN]. Perform a comprehensive reconnaissance phase to identify subdomains, open ports, and potential vulnerabilities. Use tools like Nmap for port scanning, Sublist3r for subdomain enumeration, and Nuclei for vulnerability scanning. Generate a prioritized report with actionable remediation steps for [SECURITY_TEAM]. Include CVSS scores for identified vulnerabilities and suggest immediate mitigations.
### Security Assessment Report: AcmeCorp.com
**Generated:** November 15, 2023
**Assessed by:** AI Security Researcher (communitytools v1.2)
**Scope:** AcmeCorp.com (192.168.1.0/24)
---
#### **1. Reconnaissance Summary**
**Subdomains Discovered (24 total):**
- `api.acmecorp.com` (Host: 192.168.1.10)
- `dev.acmecorp.com` (Host: 192.168.1.15)
- `staging.acmecorp.com` (Host: 192.168.1.20)
- `mail.acmecorp.com` (Host: 192.168.1.25)
- `blog.acmecorp.com` (Host: 192.168.1.30)
- `cdn.acmecorp.com` (Host: 192.168.1.35)
**Critical Findings:**
- **Open Ports:** 22 (SSH), 80 (HTTP), 443 (HTTPS), 3306 (MySQL), 8080 (Tomcat)
- **Vulnerable Services:**
- `dev.acmecorp.com:8080` running Apache Tomcat 9.0.31 (CVSS: 9.8 - Critical)
- **Vulnerability:** CVE-2020-1938 (Ghostcat) - File read/write via AJP
- **Impact:** Unauthorized access to sensitive files (e.g., `/etc/passwd`)
- **Remediation:** Upgrade Tomcat to 9.0.62+ or disable AJP connector
- `staging.acmecorp.com:3306` exposing MySQL without authentication (CVSS: 7.5 - High)
- **Impact:** Database enumeration possible
- **Remediation:** Restrict MySQL to internal IPs and enforce authentication
---
#### **2. Prioritized Action Plan**
**Immediate (Within 24 Hours):**
1. **Patch Tomcat Ghostcat (CVE-2020-1938)**
- Action: Upgrade to Tomcat 9.0.62+
- Owner: DevOps Team
- Deadline: EOD Nov 16
2. **Secure MySQL Instance**
- Action: Restrict port 3306 to internal IPs and enable `mysql_native_password`
- Owner: Database Admin
- Deadline: EOD Nov 16
**Short-Term (Within 1 Week):**
3. **Subdomain Hardening**
- Action: Audit and remove unused subdomains (e.g., `dev`, `staging`)
- Owner: Security Team
- Deadline: Nov 23
4. **SSH Brute-Force Mitigation**
- Action: Deploy fail2ban and enforce key-based auth
- Owner: IT Operations
- Deadline: Nov 23
**Long-Term (Within 1 Month):**
5. **Automated Vulnerability Scanning**
- Action: Integrate Nuclei into CI/CD pipeline for continuous scanning
- Owner: DevOps Team
- Deadline: Dec 15
---
#### **3. Tools Used**
- **Sublist3r:** Enumerated 24 subdomains (8 new)
- **Nmap:** Identified 5 open ports across 3 hosts
- **Nuclei:** Detected 3 critical vulnerabilities (2 confirmed)
- **Gowitness:** Captured screenshots of exposed services
---
#### **4. Next Steps**
- **Security Team:** Review and approve remediation plan
- **DevOps Team:** Schedule Tomcat upgrade during maintenance window
- **Database Admin:** Implement MySQL security best practices
**Note:** This report is generated automatically. For manual verification, refer to the raw scan logs attached.AI assistant built for thoughtful, nuanced conversation
Ensure cloud security with continuous monitoring and vulnerability management.
AI-driven email security with automated threat detection and fraud prevention.
Ensure cloud-native security with comprehensive container scanning and runtime protection.
AI-powered offensive security automation
Security patch notifications for servers
Take a free 3-minute scan and get personalized AI skill recommendations.
Take free scan