Generate prioritized vulnerability hunting workflows for bug bounty programs by focusing on high-impact security issues like RCE, SQLi, and XSS to maximize bounty potential.
MIT
236,116 tools. Last updated 2026-06-25 17:51
"namespace:com.task-bounty" matching MCP tools:
- Close an active bounty to prevent further claims when an issue is resolved without payout. Requires bounty ID and creator authorization.MIT
- Discover available bounties for contribution or review their status. Returns a JSON array of bounty objects with details such as id, amount, state, and creator. Optionally limit the results.MIT
- Attach a token reward to an issue to incentivize work. Broadcasts an on-chain transaction and returns the bounty ID. Requires owner, repo name, issue ID, and amount.MIT
- Permanently remove an active bounty from Gitopia. Only the bounty creator can delete it using its bounty ID. Use close_bounty if you only need to deactivate.MIT
- Search open bounties for paid engineering work across software, hardware, MCP servers, CAD, EDA. Filter by category, status, and payout to discover tasks matching your capabilities.MIT
Matching MCP Servers
- AlicenseAqualityFmaintenanceProvides Claude Code with access to a comprehensive bug bounty knowledge base including techniques, payloads, wordlists, and real-world reports through 14 tools for searching, retrieving payloads, and assessing report quality.Last updated1414GPL 3.0
- AlicenseCqualityDmaintenanceEnables AI agents to generate and manage specialized bug bounty hunting workflows including reconnaissance, vulnerability testing, OSINT gathering, and file upload testing. Provides REST API endpoints for comprehensive security assessments with intelligence-driven vulnerability prioritization.Last updated402MIT
Matching MCP Connectors
Marketplace where AI coding agents fix GitHub bugs for cash bounties. Posters draft and fund bounties from chat (Stripe Checkout); solvers browse open work, request repo access, submit PRs, and get paid in USDC, ETH, or BTC. 11 tools.
A bounty board where AI agents do honest work for real money, sealed to a public ledger.
- Get full bounty details including amount, state, expiry, and creator to decide if it's worth working on. Requires bounty ID.MIT
- Extend a bounty's expiration date by specifying the bounty ID and an optional new expiry timestamp.MIT
- Assess DeFi protocol safety with a 0-100 risk score based on TVL size, trend, contract age, audits, and bug-bounty status. Higher scores indicate lower rug-pull and hack risk.Business Source 1.1
- Evaluate DeFi protocol risk with a 0-100 score using TVL, contract age, audit count, and Immunefi status to assess contract and governance safety.Business Source 1.1
- Cancel a draft bounty that has not been funded. Use this tool to remove an unfunded draft from the marketplace.MIT
- Scan any public URL for performance, accessibility, SEO, and best practices issues. Get scores and a list of problems with one-click bounty pre-fill to post fix requests.MIT
- Accept the winning submission for your bounty. Completes the job, awards XP and payout to the developer, and rejects all other pending submissions.MIT
- Select the winning submission for a bounty. The award is staged as pending review and finalized after admin approval.MIT
- Create a Stripe Checkout session to fund a draft bounty. Users must visit the returned URL to complete payment.MIT
- Retrieve all submissions for a specific bounty task, including verification status, agent name, and external link. Use the task ID to fetch submission details.MIT
- Retrieve complete details of a specific bug bounty by ID, including description, expected vs actual behavior, reproduction steps, and tech stack to understand and address the issue.MIT
- Search SecLists by filename or keyword to find wordlists for specific testing tasks such as fuzzing, discovery, or password cracking.GPL 3.0
- Apply to a private VibeFix bounty by submitting your bounty ID and a brief introduction. The owner reviews your application and grants access if approved. For private bounties only.MIT
- Retrieve the full content of a file from the bug bounty knowledge base by specifying its relative path. Use after searching to access complete details.GPL 3.0