Launching today

BugBounty Arsenal
Free continuous security scanner with new-finding alerts
4 followers
Free continuous security scanner with new-finding alerts
4 followers
Most scanners run once and forget. This one keeps watching your targets: schedule recurring scans (daily/weekly/monthly) and get an email/Discord/Slack alert only when NEW findings appear vs the previous run. It also tracks your attack surface (hosts, subdomains, tech, ports) over time, has a triage workflow that remembers your decisions across re-scans, and ships a CLI + GitHub Action to fail a CI build on new criticals. 50+ detectors across recon, web, API and mobile. Free, open source.





The recurring scan with diffing against previous runs is genuinely clever, especially the CI gate on new criticals. One thing that would make this way more useful for me: a SARIF export so the findings plug straight into GitHub code scanning instead of relying only on exit codes. Most teams already have a Security tab wired up and would love seeing BugBounty Arsenal's alerts show up right alongside CodeQL results.