# reddelexc/hackerone-reports

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/reddelexc-hackerone-reports).**

5,331 stars · 955 forks · Python

## Links

- GitHub: https://github.com/reddelexc/hackerone-reports
- awesome-repositories: https://awesome-repositories.com/repository/reddelexc-hackerone-reports.md

## Topics

`bugbounty` `csrf` `hackerone` `idor` `rce` `reports` `security` `sql-injection` `ssrf` `writeups` `xss` `xxe`

## Description

hackerone-reports is a bug bounty dataset aggregator and vulnerability intelligence tool designed to scrape and parse public security reports from the HackerOne platform. It functions as a security report parser that transforms raw bug bounty feeds into structured datasets for analysis.

The system automates the collection of public vulnerability reports to identify common security patterns and facilitate security research. It specializes in organizing these disclosures by bug type, payout amount, and target program to enable vulnerability trend analysis.

The tool covers capabilities for scraping raw vulnerability data and aggregating these reports into a searchable local dataset. It provides functionality to categorize security reports by their specific attributes to help researchers track known security flaws.

## Tags

### Security & Cryptography

- [Bug Bounty Dataset Aggregators](https://awesome-repositories.com/f/security-cryptography/compliance-standards/vulnerability-mapping/cve-mapping/bug-bounty-dataset-aggregators.md) — Organizes security vulnerability reports by bug type, payout amount, and target program into a structured dataset.
- [Bug Bounty Data Collection](https://awesome-repositories.com/f/security-cryptography/security/offensive-operations/penetration-testing-ethical-hacking/bug-bounty-data-collection.md) — Gathers public vulnerability reports from platforms into a local format for analysis and study.
- [Categorization Tools](https://awesome-repositories.com/f/security-cryptography/security-vulnerability-reporting/categorization-tools.md) — Organizes vulnerability reports by payout, bug type, and target program to facilitate research. ([source](https://cdn.jsdelivr.net/gh/reddelexc/hackerone-reports@master/README.md))
- [Vulnerability Intelligence Feeds](https://awesome-repositories.com/f/security-cryptography/vulnerability-intelligence-feeds.md) — Provides a utility for scraping and categorizing public bug reports to generate vulnerability intelligence.

### Data & Databases

- [Data Aggregators](https://awesome-repositories.com/f/data-databases/data-aggregators.md) — Collects high-impact security reports from public feeds and organizes them by type, payout, and program. ([source](https://reddelexc.github.io/hackerone-reports))
- [Data Parsers](https://awesome-repositories.com/f/data-databases/data-parsers.md) — Transforms raw bug bounty feeds into structured datasets for security analysis.
- [Vulnerability Datasets](https://awesome-repositories.com/f/data-databases/public-datasets/vulnerability-datasets.md) — Aggregates diverse security disclosures from multiple public feeds into a single searchable dataset.
- [Web Scrapers](https://awesome-repositories.com/f/data-databases/web-scrapers.md) — Provides automated scripts to scrape raw vulnerability data from bounty platforms for local analysis. ([source](https://cdn.jsdelivr.net/gh/reddelexc/hackerone-reports@master/README.md))

### Part of an Awesome List

- [Research Automation](https://awesome-repositories.com/f/awesome-lists/more/security-research/research-automation.md) — Automates the discovery and organization of known security flaws to identify common attack patterns.

### System Administration & Monitoring

- [Vulnerability](https://awesome-repositories.com/f/system-administration-monitoring/trend-analysis/vulnerability.md) — Tracks payout amounts and bug types across programs to analyze the current security landscape.