{"id":13695347,"url":"https://github.com/sw33tLie/bbscope","last_synced_at":"2025-05-03T13:32:04.847Z","repository":{"id":39990143,"uuid":"318600060","full_name":"sw33tLie/bbscope","owner":"sw33tLie","description":"Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!","archived":false,"fork":false,"pushed_at":"2024-10-16T15:43:15.000Z","size":11162,"stargazers_count":1019,"open_issues_count":18,"forks_count":145,"subscribers_count":20,"default_branch":"master","last_synced_at":"2024-11-08T04:03:57.989Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/sw33tLie.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-12-04T18:15:17.000Z","updated_at":"2024-11-07T08:01:17.000Z","dependencies_parsed_at":"2023-12-12T18:40:29.894Z","dependency_job_id":"65702150-f3cf-4033-a12a-a1a652f41cd0","html_url":"https://github.com/sw33tLie/bbscope","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sw33tLie%2Fbbscope","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sw33tLie%2Fbbscope/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sw33tLie%2Fbbscope/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sw33tLie%2Fbbscope/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/sw33tLie","download_url":"https://codeload.github.com/sw33tLie/bbscope/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":224364279,"owners_count":17299044,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-02T18:00:21.669Z","updated_at":"2025-05-03T13:32:04.841Z","avatar_url":"https://github.com/sw33tLie.png","language":"Go","readme":"# bbscope\n\n**bbscope** is a powerful scope aggregation tool for all major bug bounty platforms:\n- [HackerOne](https://hackerone.com/)\n- [Bugcrowd](https://bugcrowd.com/)\n- [Intigriti](https://intigriti.com/)\n- [Immunefi](https://immunefi.com/)\n- [YesWeHack](https://yeswehack.com/)\n\nDeveloped by [sw33tLie](https://x.com/sw33tLie), bbscope helps you efficiently collect and manage program scopes from the platforms where you're active. Whether you're hunting for domains, Android APKs, or binaries to reverse engineer, **bbscope** makes the process quick and simple.\n\n---\n\n## 📦 Installation\n\nEnsure you have a recent version of Go installed, then run:\n\n```bash\ngo install github.com/sw33tLie/bbscope@latest\n```\n\n---\n\n## 🔐 Authentication\n\nEach supported platform requires specific authentication:\n\n- **HackerOne:** Use your API token, available from [H1 API Token Settings](https://hackerone.com/settings/api_token/edit).  \n  **Note:** The `-u \u003cusername\u003e` flag is mandatory.\n- **Bugcrowd:** You have two options:\n  - **Option 1:** Supply your email, password, and OTP generation command. This allows bbscope to log in programmatically and obtain a valid token.\n  - **Option 2:** Manually log in through your browser and then provide the `_bugcrowd_session` cookie value via the `-t \u003cYOUR_TOKEN\u003e` flag.\n  *(Both methods require 2FA; see below for additional details.)*\n- **Intigriti:** Generate a personal access token from [Intigriti Personal Access Tokens](https://app.intigriti.com/researcher/personal-access-tokens).\n- **YesWeHack:** Use a bearer token collected from API requests. *(Requires 2FA, see below)*\n- **Immunefi:** No token is required.\n\n### Two-Factor Authentication (2FA) for Bugcrowd \u0026 YesWeHack\n\nBugcrowd and YesWeHack require two-factor authentication to access authenticated endpoints. We recommend installing the following [2FA CLI tool](https://github.com/rsc/2fa):\n\n```bash\ngo install rsc.io/2fa@latest\n```\n\nOnce installed, configure it for Bugcrowd (adjust similarly for YesWeHack):\n\n```bash\n2fa -add bugcrowd\n2fa key for bugcrowd: your_2fa_key_here\n```\n\nThen, supply the OTP automatically using the `--otpcommand` flag in your **bbscope** command:\n\n```bash\n--otpcommand \"2fa bugcrowd\"\n```\n\nReplace `\"2fa bugcrowd\"` with `\"2fa yeswehack\"` as needed, or whatever name you gave to the 2FA code.\n\nPlease note that the `--otpcommand` flag simply runs a shell command to fetch the OTP, and it expects the OTP to be printed to stdout. You can use any other way to fetch the OTP, as long as it prints the OTP to stdout.\n\n---\n\n## 🛠️ Usage\n\nInvoke **bbscope** with the appropriate subcommand and flags:\n\n```bash\nbbscope (h1|bc|it|ywh|immunefi) -t \u003cYOUR_TOKEN\u003e [options]\n```\n\nFor a complete list of options, run:\n\n```bash\nbbscope --help\n```\n\nNote that subcommands have different options, so be sure to check the help for each subcommand for more information.\n\n---\n\n## 📖 Examples\n\n### HackerOne\n\nGet in-scope targets from bounty-based HackerOne programs:\n\n```bash\nbbscope h1 -t \u003cYOUR_TOKEN\u003e -u \u003cYOUR_H1_USERNAME\u003e -b -o t\n```\n\nList Android APKs from your HackerOne programs:\n\n```bash\nbbscope h1 -t \u003cYOUR_TOKEN\u003e -u \u003cYOUR_H1_USERNAME\u003e -o t -c android\n```\n\nInclude descriptions and program URLs with your targets:\n\n```bash\nbbscope h1 -t \u003cYOUR_TOKEN\u003e -u \u003cYOUR_H1_USERNAME\u003e -o tdu -d \", \"\n```\n\nRetrieve URLs from private HackerOne programs:\n\n```bash\nbbscope h1 -t \u003cYOUR_TOKEN\u003e -u \u003cYOUR_H1_USERNAME\u003e -o u -p | sort -u\n```\n\n### Bugcrowd\n\nList targets from private Bugcrowd programs that offer rewards, with automatic login:\n\n```bash\nbbscope bc -E \u003cYOUR_EMAIL\u003e -P \"\u003cYOUR_PASSWORD\u003e\" -b -p -o t --otpcommand \"2fa bugcrowd\"\n```\n\nSimilarly, you can use the `-t \u003cYOUR_TOKEN\u003e` flag to manually log in and supply the `_bugcrowd_session` cookie value:\n\n```bash\nbbscope bc -t \u003cYOUR_TOKEN\u003e -b -p -o t\n```\n\nNote that the cookie value will expire after some minutes, so the first method is recommended.\n\n### Intigriti\n\nGet targets and program URLs from all Intigriti programs, including out-of-scope elements:\n\n```bash\nbbscope it -t \u003cYOUR_TOKEN\u003e -o tu --oos\n```\n\n### Immunefi\n\nRetrieve all available scope data from Immunefi:\n\n```bash\nbbscope immunefi\n```\n\n---\n\n## ⚠️ Scope Parsing Considerations\n\nBug bounty programs may not consistently categorize assets. When hunting for URLs with the `-c url` flag, consider also using `-c all` to ensure no relevant targets are missed.\n\n---\n\n## 🙏 Credits\n\nThanks to the following contributors:\n\n- [0xatul](https://github.com/0xatul)\n- [JoeMilian](https://github.com/JoeMilian)\n- [ByteOven](https://github.com/ByteOven)\n- [dee-see](https://gitlab.com/dee-see)\n- [jub0bs](https://jub0bs.com)\n- [0xbeefed](https://github.com/0xbeefed)\n- [bsysop](https://x.com/bsysop)","funding_links":[],"categories":["Tools","Roadmap","Recon","bugbounty","Go"],"sub_categories":["Monitoring"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsw33tLie%2Fbbscope","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsw33tLie%2Fbbscope","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsw33tLie%2Fbbscope/lists"}