Keyboard shortcuts

Press or to navigate between chapters

Press S or / to search in the book

Press ? to show this help

Press Esc to hide this help

HackerOne

Authentication

HackerOne uses API token authentication (HTTP Basic Auth).

Generate a token at hackerone.com/settings/api_token.

Config file

hackerone:
  username: "your_username"
  token: "your_api_token"

CLI flags

bbscope poll h1 --user your_username --token your_api_token

Environment variables (web server)

H1_USERNAME=your_username
H1_TOKEN=your_api_token

What it fetches

  • All programs you have access to (public + private if invited)
  • In-scope and out-of-scope targets with categories and descriptions
  • Paginated via the HackerOne API v1 (/v1/hackers/programs)

Filtering

# Only bug bounty programs
bbscope poll h1 -b

# Only private programs
bbscope poll h1 -p

Platform name

Used in database records and API responses: h1