{"id":13846050,"url":"https://github.com/honoki/bbrf-server","last_synced_at":"2025-07-12T03:33:41.480Z","repository":{"id":44845910,"uuid":"334115865","full_name":"honoki/bbrf-server","owner":"honoki","description":"The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices","archived":false,"fork":false,"pushed_at":"2024-11-17T19:56:48.000Z","size":24,"stargazers_count":295,"open_issues_count":7,"forks_count":46,"subscribers_count":11,"default_branch":"main","last_synced_at":"2024-11-17T20:47:07.728Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/honoki.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2021-01-29T10:47:41.000Z","updated_at":"2024-11-17T19:56:52.000Z","dependencies_parsed_at":"2024-04-10T05:38:36.207Z","dependency_job_id":"8b54b5b9-9c73-44bb-bef9-308814bd57a2","html_url":"https://github.com/honoki/bbrf-server","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/honoki%2Fbbrf-server","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/honoki%2Fbbrf-server/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/honoki%2Fbbrf-server/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/honoki%2Fbbrf-server/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/honoki","download_url":"https://codeload.github.com/honoki/bbrf-server/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225791525,"owners_count":17524799,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-04T17:04:18.717Z","updated_at":"2025-07-12T03:33:41.463Z","avatar_url":"https://github.com/honoki.png","language":"Shell","readme":"[![Mastodon](https://img.shields.io/mastodon/follow/110779442452085429?domain=https%3A%2F%2Finfosec.exchange\u0026style=flat-square\u0026logo=mastodon\u0026logoColor=fff)](https://infosec.exchange/@honoki)\n[![BlueSky](https://img.shields.io/badge/@honoki.net-0285FA?logo=bluesky\u0026logoColor=fff\u0026style=flat-square)](https://bsky.app/profile/honoki.net)\n    \n## Introduction\n\nThe Bug Bounty Reconnaissance Framework (BBRF) is intended to facilitate the workflows of security researchers across multiple devices. This repository contains the source files to deploy a BBRF server. \n\nFor more information about BBRF, read the blog post on https://honoki.net/2020/10/08/introducing-bbrf-yet-another-bug-bounty-reconnaissance-framework/\n\nOnce you have deployed a BBRF server, move on to [install the BBRF client here](https://github.com/honoki/bbrf-client/)\n\n## Installation\n\nStart by cloning this repository:\n\n```bash\ngit clone https://github.com/honoki/bbrf-server/\ncd bbrf-server\n```\n\n**⚠️ IMPORTANT: Change the default passwords!**\n\nEdit the `docker-compose.yml` file and replace the default passwords:\n- `COUCHDB_PASSWORD=admin` - Change this to a strong password\n- `BBRF_PASSWORD=bbrf` - Change this to a strong password\n\nBuild and start the containers:\n\n```bash\nsudo docker compose up -d\n```\n\nNote that this will expose port 443 (https) on your BBRF server to the internet. Docker Compose generates a self-signed certificate for the reverse proxy which it persists to the volume `./keys/`. You can replace them with a valid certificate if you want to avoid certificate warnings, see the instructions below.\n\nVerify your installation by browsing to https://127.0.0.1/_utils/#database/bbrf/_all_docs\n\n## Generate certificate with Letsencrypt\n\nTo configure your BBRF server with a valid certificate, it suffices to generate the cert files with `certbot` and place them in the `keys` directory. The keys will be picked up when you next start the containers.\n\nThe following steps should get you up and running:\n\n1. Ensure you have a domain name pointed to your BBRF server;\n2. If you are still in docker-compose, stop the containers with `ctrl+C`;\n3. Install certbot: `sudo apt install certbot`\n4. If necessary, allow HTTP traffic e.g: `ufw allow 80/tcp`\n5. Run `certbot -d yourdomain.com certonly` and follow the steps;\n6. Copy the generated certificate files to the keys volume: `cp /etc/letsencrypt/live/yourdomain.com/{fullchain.pem,privkey.pem} ./proxy/keys/`\n7. Restart your containers: `sudo docker compose up -d`\n\nBrowse to `https://yourdomain.com/_utils/#database/bbrf/_all_docs` to validate the setup.\n\n## See also\n\n* [BBRF Client](https://github.com/honoki/bbrf-client)\n* [BBRF Dashboard](https://github.com/honoki/bbrf-dashboard)\n* [BBRF Burp Plugin](https://github.com/honoki/bbrf-burp-plugin)\n* [BBRF Agents](https://github.com/honoki/bbrf-agents)","funding_links":[],"categories":["Pentesting","Shell"],"sub_categories":["Payloads"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhonoki%2Fbbrf-server","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fhonoki%2Fbbrf-server","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhonoki%2Fbbrf-server/lists"}