Run safe bug bounty recon and organize manual testing evidence and plans.
Copy the install command and let the AI configure it · recommended for beginners
No copy-paste install info for "recon-mcp" yet — see the docs or source repo.
Use recon-mcp to check whether a target domain is in bug bounty scope, summarize key findings from headers, robots.txt, and sitemap.xml, and provide a concise conclusion with suggested manual follow-up checks.
A scope-check summary showing in-scope status, basic asset clues, and recommended manual verification steps.
Use recon-mcp to collect URLs and endpoints from a target site's JavaScript, deduplicate them, organize them by path, parameters, and source file, and highlight high-value endpoints for manual testing.
A deduplicated endpoint list with sources, parameter clues, and prioritized testing suggestions.
Based on the discovered headers, paths, robots.txt, sitemap.xml, and endpoint clues, use recon-mcp to generate evidence notes and create a manual vulnerability testing plan ordered by risk and validation sequence.
Structured evidence notes and a manual test plan for follow-up validation and reporting.
Run passive, subdomain, vulnerability, and OSINT reconnaissance with reconFTW tools.
Scans Express.js routes and inventories public versus authenticated endpoints for audits.
Use natural language to drive IDA Pro and Ghidra for binary analysis.
Search the web and read single or multiple pages efficiently.
Analyze AI security, scan vulnerabilities, and monitor code leaks efficiently.
Run unified penetration testing workflows for reconnaissance, scanning, code analysis, and authenticated checks.