Built by hunters,
for hunters

Hugin exists because we got tired of paying rent on our own tools.

The problem

The security tooling market has a gatekeeping problem. The proxy you need to do real work costs $450/year. The scanner worth using is another subscription on top. A race condition tool? That's a separate product too. Before you've even found your first bug, you're already hundreds of dollars deep.

Meanwhile the actual environment has changed. AI rewrites the playing field every few months. Vendors are still figuring out if they want to offer AI integration or not. Hunters can't wait for them to decide.

What we believe

No hunter should pay to start hunting

The Community tier is not a demo. It's not crippled. It's not time-limited. Proxy, scanner, intruder, repeater, sequencer, decoder — all of it, free forever. No account required. No telemetry. You download it, you own it.

Day 1 ready

Install. Set your proxy. Start hunting. No onboarding wizard, no cloud dashboard, no mandatory sign-up. One binary, runs locally, works offline. You should be sending your first request within 60 seconds of downloading.

Private by default

Your traffic never leaves your machine. There is no analytics, no crash reporting, no usage tracking. Accounts are anonymous IDs — no email, no password, no recovery. The Mullvad model: we don't want to know who you are.

Lightweight and fast

Single native binary. No Electron, no JVM, no Docker container. Starts in under a second. Runs on machines that would choke on Chrome DevTools. Written in Rust because your proxy shouldn't be the bottleneck.

AI-native, not AI-adjacent

94 MCP tools built in. Connect Claude, Cursor, or any MCP-compatible agent directly to the proxy. Your AI doesn't need to scrape a web UI — it talks to Hugin natively. This isn't a bolt-on feature, it's core architecture.

The threshold just dropped

The entry price into professional bug bounty hunting used to be hundreds of dollars before you even started. That's backwards. Hugin Community is free — and it's the real thing. When you're ready for race conditions, WASM modules, Lua scripting, and 40+ offensive MCP tools, Pro is 5 EUR/month. No auto-renewal. No lock-in. That's not a paywall — it's an opportunity. It lets you focus on the work actually done instead of worrying about tool costs.

Free Pro for students

If you have a GitHub Student Developer Pack, you get 12 months of Pro for free. No forms, no proof uploads — GitHub already verified you. Claim yours here.

Who we are

We're bug bounty hunters. We report on HackerOne, YesWeHack, and others. We built Hugin because we needed it — then realized everyone else needed it too.

The Pro tier exists so we can keep building. But the core tool? That stays free. Always.