The Bug Bounty MCP Server is a specialized platform for comprehensive bug bounty hunting and security assessments, providing security tools, predefined workflows, and AI-assisted functionalities through REST API and MCP server interfaces.
Core Security Tools: Execute port scanning (Nmap, RustScan, Masscan), subdomain/DNS enumeration (Amass, Subfinder, Fierce, Dnsenum), web discovery (HTTPx, Gobuster, Feroxbuster, Katana, Gau, Waybackurls), parameter discovery (Arjun, ParamSpider, X8, Wfuzz), and vulnerability scanning (Nuclei, SQLMap, Dalfox, Nikto, WPScan, Jaeles).
Specialized Workflows: Generate and manage tailored workflows for reconnaissance, intelligence-driven vulnerability hunting, business logic testing, OSINT gathering, file upload testing, and comprehensive assessments with bounty potential prioritization.
AI-Powered Intelligence: Leverage AI to analyze targets, select optimal tools, optimize configurations, create attack chains, and execute smart scans with parallel processing and objective-driven tool selection.
Protection Analysis: Identify Web Application Firewalls with wafw00f and analyze CMS vulnerabilities with specialized scanners.
Integration & Quality: Programmatically interact via REST API, integrate with AI coding assistants like Gemini CLI, and maintain strict code quality standards with automated linters and security scanners.
Enables HTTP request testing and API interaction for bug bounty reconnaissance and vulnerability testing workflows
Provides a REST API server built with Flask for bug bounty workflow generation and management, including reconnaissance, vulnerability hunting, and OSINT operations
Supports version control and pre-commit hooks for maintaining code quality in bug bounty tool development
Integrates with GitHub Spec-Kit for specification-driven development workflow and repository management in bug bounty testing environments
Integrates with Google's Gemini CLI for AI-powered development assistance, codebase exploration, planning, and security verification of bug bounty workflows
Enforces code quality standards through automated pre-commit hooks for linting, formatting, and security scanning
Built on Python runtime with comprehensive dependency management for bug bounty security tools and workflow automation
Provides fast Python linting and code formatting capabilities for maintaining code quality in security tool development
Bug Bounty MCP Server
A clean, focused server containing bug bounty hunting workflows and REST API endpoints.
For AI coding assistants, see AGENTS.md
for repository-specific guidance.
Features
Clean Architecture: Removed bloat and unnecessary dependencies while maintaining core functionality
Bug Bounty Focused: Specialized workflows for reconnaissance, vulnerability hunting, business logic testing, OSINT, and file upload testing
REST API Endpoints: Simple HTTP API for workflow generation and management
Comprehensive Assessments: Combine multiple workflows for complete bug bounty assessments
Architecture
Core Components
REST API Server (
src/rest_api_server/app.py
) - Flask-based HTTP API server with bug bounty workflow endpointsMCP Server (
src/mcp_server/app.py
) - FastMCP-based server for AI agent communicationBug Bounty Workflows (
src/rest_api_server/workflows/
) - Specialized workflow generation for different phases of testingTool Integration (
src/rest_api_server/tools/
) - Consolidated security tool wrappersShared Utilities (
src/rest_api_server/utils/
&src/rest_api_server/logger.py
) - Registry, logging, and helper utilities shared across endpoints
Quick Start
1. Install Dependencies & Start the Server
2. Test the API
Configuration
Environment Variables
BUGBOUNTY_MCP_PORT
: Server port (default: 8888)BUGBOUNTY_MCP_HOST
: Server host (default: 127.0.0.1)DEBUG
: Enable debug mode (default: false)
Usage Examples
Key Features
Bug Bounty Workflow Management: Complete workflow generation for different phases of bug bounty hunting
Vulnerability Prioritization: Intelligence-driven prioritization based on impact and bounty potential
File Upload Testing: Specialized framework for file upload vulnerability testing
OSINT Integration: Comprehensive OSINT gathering workflows
Business Logic Testing: Structured approach to business logic vulnerability discovery
Spec-Kit Integration & AI-Assisted Development
This repository integrates with GitHub Spec-Kit for specification-driven development workflow, enhanced with AI assistance for codebase exploration, planning, and verification.
Gemini CLI Integration
The repository includes integration with Google's Gemini CLI for enhanced AI-powered development assistance:
Key Use Cases
Codebase Exploration
Analyze complex bug bounty tool integrations and workflows
Understand relationships between MCP server components and REST API endpoints
Navigate through security tool configurations and vulnerability detection patterns
Planning & Specification
Generate comprehensive implementation plans for new bug bounty workflows
Create detailed specifications for security tool integrations
Plan testing strategies for vulnerability detection capabilities
Code Review & Verification
Validate implementation quality against security best practices
Review bug bounty workflow logic for completeness and accuracy
Verify API endpoint security and error handling
Analyze tool output parsing and vulnerability classification
Integration with Spec-Kit Workflow
The Gemini CLI complements the existing spec-kit commands:
Specify Phase (
.claude/commands/specify.md
)# Use Gemini CLI to analyze requirements and generate specifications npx @google/gemini-cli@nightly analyze-requirements --input "feature_description"Planning Phase (
.claude/commands/plan.md
)# Use Gemini CLI to validate and enhance implementation plans npx @google/gemini-cli@nightly review-plan --spec-file "path/to/spec.md"Implementation Verification
# Use Gemini CLI as a code reviewer and security auditor npx @google/gemini-cli@nightly audit-security --focus bug-bounty-workflows
Recommended Workflow
Dependencies
Project uses uv
for fast, reliable dependency management:
Core Dependencies
Flask: Web framework for REST API
FastMCP: MCP server framework
Requests: HTTP client library
Python 3.11+: Core runtime (supports Python 3.11, 3.12, 3.13)
Development Dependencies
Ruff: Fast Python linter and formatter
Bandit: Security vulnerability scanner
Pydocstyle: Documentation quality checker
Pyright: Static type checker
Pre-commit: Git pre-commit hooks framework
Install dependencies:
Add new dependencies:
Code Quality
This project enforces code quality through automated pre-commit hooks:
Standards:
Line length: 88 characters
Documentation: Google docstring convention
Type hints: Required for public APIs
Security: Bandit security scanning enabled
Contributing
We welcome contributions. Please see CONTRIBUTING.md
for guidelines.
Using an AI coding assistant? Start with AGENTS.md
for repository-specific guidance.
remote-capable server
The server can be hosted and run remotely because it primarily relies on remote services or has no dependency on the local environment.
Tools
Enables AI agents to generate and manage specialized bug bounty hunting workflows including reconnaissance, vulnerability testing, OSINT gathering, and file upload testing. Provides REST API endpoints for comprehensive security assessments with intelligence-driven vulnerability prioritization.