
Overview
The HackerOne integration pulls vulnerability reports from your bug bounty or VDP program into Pwnbook. Review, triage, and track reports without switching between platforms.Prerequisites
- A HackerOne account with access to a program
- A HackerOne API token (program-scoped)
- Admin or Owner access in Pwnbook
Setup
Generate a HackerOne API token
- Log in to HackerOne and go to Settings → API Token.
- Create a new token scoped to your program.
- Copy the Identifier and Token values.
What’s available
| View | Description |
|---|---|
| Reports | All reports with severity, state (new, triaged, resolved), and bounty status |
| Triage queue | Reports awaiting triage, sorted by severity |
| Report detail | Full report content, timeline, and attachments |