https://github.com/gwen001/bbstats

Bug Bounty statistics tool.
https://github.com/gwen001/bbstats

bugbounty graph php stats

Last synced: about 1 year ago
JSON representation

Bug Bounty statistics tool.

• Host: GitHub
• URL: https://github.com/gwen001/bbstats
• Owner: gwen001
• License: mit
• Created: 2017-09-13T11:35:06.000Z (almost 9 years ago)
• Default Branch: master
• Last Pushed: 2022-11-17T20:37:51.000Z (over 3 years ago)
• Last Synced: 2025-04-20T11:32:17.206Z (about 1 year ago)
• Topics: bugbounty, graph, php, stats
• Language: PHP
• Homepage:
• Size: 823 KB
• Stars: 31
• Watchers: 4
• Forks: 9
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • Funding: .github/FUNDING.yml
  • License: LICENSE.md

Awesome Lists containing this project

README

          
BBStats


A tool that display stats and graphs about your bug bounty activity.




    

    

    



---

## Requirements

A web server with PHP installed and Curl extension enabled.  

Put the code at the root of your web server:

```

git clone https://github.com/gwen001/BBstats

```

## Auth

Set environment variable `HACKERONE_USERNAME` and `HACKERONE_PASSWORD`

## Recommended usage

Grab the datas from your favorite platform for the first time: *quick-init.sh*

```

php data-grabber.php -p hackerone -a n -rr -tt -e

```

Or update your current database (once a week for example): *quick-update.sh*

```

php data-grabber.php -p hackerone -a u -r -t -e -n 50

```

Enjoy the stats!

```

firefox http://127.0.0.1/BBstats/

```

## Grabber

```

Usage: php data-grabber.php -p  [OPTIONS]

Options:

	-a	action to perform (default=N)

		   N: new, add new reports

		   U: update, add new reports and update the existing ones (title, bounty, state)

		   O: overwrite, add new reports and overwrite the existing ones

		   R: rollback, got back the previous last version of the database (not platform dependant)

	-e	grab reputation as well

	-f	import from file

	-g	import program datas

	-h	print this help

	-n	update/overwrite the last n reports (default=all, only recommended for the first init)

	-p	platform to grab datas (available: hackerone)

	-r	try to auto rate the reports but keep the current value if exists

	-rr	try to auto rate the reports and overwrite the current value

	-t	try to auto tag the reports but merge the current tags if exists

	-tt	try to auto tag the reports and overwrite the current tags

Examples:

	php data-grabber.php -p hackerone -a n

	php data-grabber.php -p hackerone -a u -n 50

	php data-grabber.php -p hackerone -a o -rr -tt -e

	php data-grabber.php -p hackerone -f bounties.csv -r -t

	php data-grabber.php -p hackerone -a r

```

## Web

You can choose which graph you want to display in `config.php`.  

You create your own autotag and autorate configuration in `config.php`.  

## Todo

__grabber__

- add more platform (Bugcrowd, YesWeHack, Intigriti, Synack...)  

__db__

- ?

__web ui__

- search engine filter: with/without bounty  

- scrollbar fot both part, left and right  

- calendar plugin for dates

__graph__

- graph: bounties per month per program  

- graph: bounties per month per type  

- graph: bounties per month per platform  

- graph: reports per month per program  

- graph: reports per month per type  

- graph: reports per month per platform  

- graph: reports per status  

__bugs__

- probably alot!

---

	

		

			

		

			

		

		

			

			

		

		

			

			

		

	

---

Feel free to [open an issue](/../../issues/) if you have any problem with the script.