SkillAgentSearch skills...

MonMon

Monitoring Monster (MonMon) is a monitoring tool for bug bounty hunters. It tracks changes across subdomains, HTTP endpoints, shell command output, and bug bounty program scopes. When something changes, you get alerted on Telegram, Discord and others.

GenerateConvertImprove

Install / Use

/learn @0xNayel/MonMon
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

<p align="center"> <pre align=""> __ __ __ __ | \/ | ___ _ __ | \/ | ___ _ __ | |\/| |/ _ \| '_ \| |\/| |/ _ \| '_ \ | | | | (_) | | | | | | | (_) | | | | |_| |_|\___/|_| |_|_| |_|\___/|_| |_| Monitoring Monster by 0xNayel </pre> </p> <h3 align="center"> Monitoring Monster

Changes monitoring for bug bounty hunters</h3>

<p align="center"> <a href="https://github.com/0xNayel/MonMon/blob/main/LICENSE"><img src="https://img.shields.io/github/license/0xNayel/MonMon?color=6366f1&style=flat-square" alt="license"/></a> <a href="https://golang.org/"><img src="https://img.shields.io/badge/go-1.22%2B-6366f1?style=flat-square" alt="go"/></a> <a href="https://github.com/0xNayel/MonMon/stargazers"><img src="https://img.shields.io/github/stars/0xNayel/MonMon?style=flat-square&color=6366f1" alt="stars"/></a> <a href="https://hub.docker.com/r/nayelxx/monmon"><img src="https://img.shields.io/badge/docker-ready-6366f1?style=flat-square" alt="docker"/></a> </p> <p align="center"> <a href="#installation">Install</a> &bull; <a href="#features">Features</a> &bull; <a href="#task-types">Tasks</a> &bull; <a href="#alerts">Alerts</a> &bull; <a href="#cli">CLI</a> &bull; <a href="docs/API.md">API</a> </p>
<!-- MonMon --> <p align="center"> <img src="screenshots/monmon.png" width="800" alt="MonMon"/> </p>

Monitoring Monster (MonMon) runs your recon on autopilot. Point it at targets, set intervals, and get alerted once anything changed. new subdomain, scope expansion, endpoint diff, command output shift. Everything is diffed, versioned, and delivered to Telegram, Slack, or Discord before anyone else notices.

Easy deploy & Easy use

<!-- Diff Viewer --> <p align="center"> <img src="screenshots/diff.png" width="800" alt="MonMon Diff Viewer"/> <br/><sub>Diff Viewer — unified diffs with line numbers, added/removed highlighting, and change filters</sub> </p> <!-- Alerts --> <p align="center"> <img src="screenshots/alerts.png" width="800" alt="MonMon Alerts"/> <br/><sub>Alerts — multi-provider (Slack, Discord, Telegram, Webhook), custom Go templates, keyword filters</sub> </p>

Features

| Category | Details | |----------|---------| | Monitoring Modes | command · endpoint · subdomain · bbscope — four task types covering shell output, HTTP responses, subdomain discovery, and bug bounty scope | | Smart Diff Engine | Unified diffs with per-URL breakdown for bulk endpoints. Filters: All / Changed / First-time. Every new line is checked against full task history, not just the previous run | | Subdomain Pipeline | subfinder -allhttpx per domain, threaded execution, stable keyed output — reordering never creates false positives | | Scope Monitoring | HackerOne, Bugcrowd, Intigriti, YesWeHack via bbscope. Diff scope expansions instantly | | Bulk Endpoints | Monitor multiple URLs in a single task. Each URL gets its own diff section. Modes: body · full · metadata · regex | | Alerts | Slack, Discord, Telegram, custom webhook. Per-task or global scope. Keyword filter. Custom message templates. Test button per config | | Dashboard | React SPA embedded in the binary. Task manager, diff viewer with collapse + search, real-time log stream (WebSocket), animated stats | | Multi-Theme UI | 6 themes (Phantom, Midnight, Terminal, Obsidian, Crimson, Frost) with live preview, View Transitions API, and localStorage persistence |

Installation

Docker Hub (recommended)

Pre-built image with all tools (subfinder, httpx, bbscope, oathtool) included.

git clone https://github.com/0xNayel/MonMon.git && cd MonMon

# Set admin credentials
echo "MONMON_ADMIN_USER=admin" >> .env
echo "MONMON_ADMIN_PASSWORD=changeme" >> .env

docker pull nayelxx/monmon:latest
docker compose up -d

Open http://localhost:8888

Updating (Docker)

docker pull nayelxx/monmon:latest && docker compose up -d

Build from source (Docker)

Edit docker-compose.yml: comment out the image: line and uncomment build: ., then:

docker compose build --no-cache && docker compose up -d

go install

go install github.com/0xNayel/MonMon/cmd/monmon@latest
monmon server

Open http://localhost:8888 — requires Go 1.22+.

Updating (go install)

monmon update

Build from source

git clone https://github.com/0xNayel/MonMon.git && cd MonMon
make build
./monmon server

Prerequisites

Required only for subdomain and bbscope task types. Not needed for command / endpoint tasks, or when using Docker.

# subfinder
go install -v github.com/projectdiscovery/subfinder/v2/cmd/subfinder@latest

# httpx
go install -v github.com/projectdiscovery/httpx/cmd/httpx@latest

# bbscope
go install github.com/sw33tLie/bbscope@latest

# oathtool (for bbscope OTP) — install via package manager
# Debian/Ubuntu: apt install oathtool
# macOS: brew install oath-toolkit
# Alpine: apk add oath-toolkit-oathtool

Verify tools: open System in the dashboard, or check the API at /api/system/tools.

Task Types

command — run any shell command, diff the output

{
  "command": "gau target.com | sort -u",
  "output_mode": "stdout",
  "timeout_sec": 120
}

Pipe anything — nuclei, ffuf, gau, waybackurls, katana, custom scripts. MonMon diffs the stdout.

endpoint — poll HTTP endpoints, diff the response

{
  "urls": ["https://target.com/api/v1/", "https://target.com/api/v2/"],
  "method": "GET",
  "monitor_mode": "body"
}

Monitor modes: body · full (headers + body) · metadata (status / length / title) · regex

Multiple URLs per task — each gets its own diff section.

subdomain — continuous subdomain discovery

{
  "domains": ["target.com", "sub.target.com"],
  "httpx_sc": true,
  "httpx_title": true,
  "httpx_td": true,
  "threads": 5
}

subfinder -all per domain → httpx. Stable keyed output means reordering never creates false diffs.

bbscope — bug bounty scope monitoring

{
  "platform": "h1",
  "token": "your_api_token",
  "username": "your_h1_username",
  "bounty_only": false,
  "output_type": "tc"
}

Platforms: h1 (HackerOne) · bc (Bugcrowd) · it (Intigriti) · ywh (YesWeHack). Get alerted the moment a scope expansion drops.

| Platform | Auth | Extra flags | |----------|------|-------------| | h1 | -t token, -u username | | | bc | -E email, -P password | --otpcommand for OTP | | it | -t API token | -c categories (url, cidr, mobile, etc.) | | ywh | -t token or -E/-P email+password | -O OTP command, -c categories |

Alerts

Configured entirely from the dashboard UI.

  1. Alerts+ NEW ALERT
  2. Name it, pick a provider (Slack / Discord / Telegram / Webhook)
  3. Set scope: global or per-task
  4. Trigger: on change, on error, or both
  5. Optional keyword filter
  6. Optional custom message template with variables:

| Variable | Description | |----------|-------------| | {{.TaskName}} | Task name | | {{.TaskType}} | Task type | | {{.CheckStatus}} | Check result status | | {{.CheckVersion}} | Check version number | | {{.DurationMs}} | Execution time in ms | | {{.DiffAdded}} | Lines added | | {{.DiffRemoved}} | Lines removed | | {{.ErrorMsg}} | Error message (if any) |

Configuration

Settings via YAML or environment variables with MONMON_ prefix.

server:
  port: 8888

database:
  path: "./data/monmon.db"

auth:
  jwt_secret: ""            # auto-generated if empty

logging:
  level: "info"             # debug / info / warn / error
  file: "./data/monmon.log"

retention:
  default_keep: 0           # 0 = keep all, N = keep last N checks
  cleanup_interval: "1h"

tools:
  subfinder: "subfinder"
  httpx: "httpx"

Environment override example: MONMON_SERVER_PORT=9090

CLI

monmon server                              # Start server (default :8888)
monmon server -p 9090 -c config.yaml       # Custom port + config
monmon version                             # Print version
monmon update                              # Self-update from GitHub

monmon task list                           # List all tasks
monmon task add-cmd "gau target.com"       # Add command task
monmon task add-url "https://target.com"   # Add endpoint task
monmon task add-domain target.com          # Add subdomain task
monmon task add-bbscope h1 -t TOKEN -u USER  # Add bbscope task
monmon task run <id>                       # Trigger immediate check
monmon task pause <id>                     # Pause task
monmon task resume <id>                    # Resume task
monmon task delete <id>                    # Delete task + checks

monmon check list <task_id>                # List checks for a task
monmon check diff <check_id>               # Show diff output

monmon logs                                # View recent logs

Running in Background

Docker (recommended):

docker compose up -d

Screen / tmux:

screen -dmS monmon monmon server
# or
tmux new -d -s monmon 'monmon server'

nohup:

nohup monmon server > /dev/null 2>&1 &

Documentation

Full API reference available in docs/API.md. Architecture details in ARCHITECTURE.md.

License

MIT

0xNayel

View profile

View on GitHub
GitHub Stars34
CategoryDevelopment
Updated4d ago
Forks6
0xNayel/MonMon

Languages

TypeScript

Security Score

95/100

Audited on Mar 31, 2026

No findings