root@arsenal:~$ ./reconnaissance --target="*"

Information gathering and target enumeration

subfinder

BEGINNER

Fast passive subdomain enumeration

debian/ubuntu
go install -v github.com/projectdiscovery/subfinder/v2/cmd/subfinder@latest
arch
yay -S subfinder
usage: subfinder -d example.com -silent
GitHub →

amass

INTERMEDIATE

In-depth attack surface mapping and asset discovery

debian/ubuntu
sudo apt install amass
arch
sudo pacman -S amass
usage: amass enum -d example.com
GitHub →

sublist3r

BEGINNER

Python tool for subdomain enumeration using OSINT

debian/ubuntu
sudo apt install sublist3r
manual
git clone https://github.com/aboul3la/Sublist3r.git && cd Sublist3r && pip install -r requirements.txt
usage: python sublist3r.py -d example.com
GitHub →

recon-ng

INTERMEDIATE

Full-featured web reconnaissance framework

debian/ubuntu
sudo apt install recon-ng
manual
git clone https://github.com/lanmaster53/recon-ng.git && cd recon-ng && pip install -r REQUIREMENTS
usage: recon-ng
GitHub →

root@arsenal:~$ ./scan --aggressive --all-ports

Network and application vulnerability scanners

nmap

BEGINNER

Network discovery and security auditing

debian/ubuntu
sudo apt install nmap
arch
sudo pacman -S nmap
usage: nmap -sV -sC example.com
GitHub →

masscan

INTERMEDIATE

Mass IP port scanner

debian/ubuntu
sudo apt install masscan
manual
git clone https://github.com/robertdavidgraham/masscan && cd masscan && make
usage: masscan -p1-65535 10.0.0.0/8 --rate=1000
GitHub →

nuclei

INTERMEDIATE

Fast vulnerability scanner based on templates

debian/ubuntu
go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest
manual
git clone https://github.com/projectdiscovery/nuclei.git && cd nuclei && go build
usage: nuclei -u https://example.com
GitHub →

naabu

BEGINNER

Fast port scanner with SYN/CONNECT/UDP scanning

debian/ubuntu
go install -v github.com/projectdiscovery/naabu/v2/cmd/naabu@latest
manual
git clone https://github.com/projectdiscovery/naabu.git && cd naabu && go build
usage: naabu -host example.com
GitHub →

root@arsenal:~$ ./webapp_test --target="https://example.com"

Tools for testing web applications and APIs

burpsuite

INTERMEDIATE

Web vulnerability scanner and proxy tool

debian/ubuntu
sudo apt install burpsuite
manual
wget https://portswigger.net/burp/releases/download?product=community&type=Linux
usage: Launch via GUI - configure browser proxy to 127.0.0.1:8080
Website →

owasp-zap

BEGINNER

Open-source web application security scanner

debian/ubuntu
sudo apt install zaproxy
arch
sudo pacman -S owasp-zap
usage: zap.sh -quickurl https://example.com
GitHub →

sqlmap

INTERMEDIATE

Automatic SQL injection and database takeover

debian/ubuntu
sudo apt install sqlmap
manual
git clone https://github.com/sqlmapproject/sqlmap.git
usage: sqlmap -u 'http://example.com/page?id=1'
GitHub →

gobuster

BEGINNER

Directory and file brute-forcer

debian/ubuntu
sudo apt install gobuster
manual
go install github.com/OJ/gobuster/v3@latest
usage: gobuster dir -u https://example.com -w /usr/share/wordlists/dirb/common.txt
GitHub →

ffuf

INTERMEDIATE

Fast web fuzzer written in Go

debian/ubuntu
go install github.com/ffuf/ffuf/v2@latest
manual
git clone https://github.com/ffuf/ffuf && cd ffuf && go build
usage: ffuf -w wordlist.txt -u https://example.com/FUZZ
GitHub →

root@arsenal:~$ ./smart_contract_audit --blockchain=ethereum

Smart contract auditing and blockchain security tools

slither

ADVANCED

Static analysis framework for Solidity smart contracts

debian/ubuntu
pip3 install slither-analyzer
manual
git clone https://github.com/crytic/slither.git && cd slither && python3 setup.py install
usage: slither contract.sol
GitHub →

mythril

ADVANCED

Security analysis tool for Ethereum smart contracts

debian/ubuntu
pip3 install mythril
manual
git clone https://github.com/ConsenSys/mythril && cd mythril && pip3 install .
usage: myth analyze contract.sol
GitHub →

echidna

ADVANCED

Ethereum smart contract fuzzer

debian/ubuntu
curl -sSL https://get.haskellstack.org/ | sh && git clone https://github.com/crytic/echidna.git && cd echidna && stack install
manual
docker pull trailofbits/echidna
usage: echidna-test contract.sol
GitHub →

manticore

ADVANCED

Symbolic execution tool for smart contracts

debian/ubuntu
pip3 install manticore
manual
git clone https://github.com/trailofbits/manticore.git && cd manticore && pip3 install .
usage: manticore contract.sol
GitHub →

root@arsenal:~$ ./exploit --payload=reverse_shell

Tools for exploiting vulnerabilities and maintaining access

metasploit

ADVANCED

Penetration testing framework with exploit database

debian/ubuntu
sudo apt install metasploit-framework
manual
curl https://raw.githubusercontent.com/rapid7/metasploit-omnibus/master/config/templates/metasploit-framework-wrappers/msfupdate.erb > msfinstall && chmod 755 msfinstall && ./msfinstall
usage: msfconsole
GitHub →

xsstrike

INTERMEDIATE

Advanced XSS detection suite

manual
git clone https://github.com/s0md3v/XSStrike.git && cd XSStrike && pip3 install -r requirements.txt
usage: python3 xsstrike.py -u 'https://example.com/search?q=test'
GitHub →

commix

ADVANCED

Command injection exploitation tool

debian/ubuntu
sudo apt install commix
manual
git clone https://github.com/commixproject/commix.git && cd commix
usage: python3 commix.py --url='http://example.com/index.php' --data='id=1'
GitHub →

root@arsenal:~$ ./utilities --automate-all

Essential utilities for bug bounty workflow automation

httpx

BEGINNER

Fast HTTP toolkit for running HTTP queries

debian/ubuntu
go install -v github.com/projectdiscovery/httpx/cmd/httpx@latest
manual
git clone https://github.com/projectdiscovery/httpx.git && cd httpx && go build
usage: httpx -l domains.txt -title -status-code
GitHub →

waybackurls

BEGINNER

Fetch URLs from Wayback Machine

debian/ubuntu
go install github.com/tomnomnom/waybackurls@latest
manual
git clone https://github.com/tomnomnom/waybackurls.git && cd waybackurls && go build
usage: echo 'example.com' | waybackurls
GitHub →

gau

BEGINNER

Get All URLs from various sources

debian/ubuntu
go install github.com/lc/gau/v2/cmd/gau@latest
manual
git clone https://github.com/lc/gau.git && cd gau && go build
usage: gau example.com
GitHub →

anew

BEGINNER

Add new lines to files, avoiding duplicates

debian/ubuntu
go install github.com/tomnomnom/anew@latest
manual
git clone https://github.com/tomnomnom/anew.git && cd anew && go build
usage: cat new_domains.txt | anew domains.txt
GitHub →

root@arsenal:~$ ./mass_installer.sh --install-all

Automated installation script for all tools

Bug Bounty Arsenal Installer

Automated installation script that detects your OS and installs all the tools listed above.

Features:

  • • Automatic OS detection (Kali, Parrot, BlackArch, Ubuntu, Debian)
  • • Dependency management and verification
  • • Progress tracking with colored output
  • • Error handling and retry mechanisms
  • • Storage space check before installation
  • • Selective tool installation

Quick Installation:

git clone https://github.com/xeyronox/bug-bounty-arsenal.git && cd bug-bounty-arsenal && chmod +x installer.sh && ./installer.sh
📥 Download from GitHub 📜 View installer.sh

Developed by @xeyronox