Command Palette

Search for a command to run...

UnylyUnyly
Весь каталог

HackerOne

БесплатноНе проверен

Connects Claude to the HackerOne Hacker API, enabling program listing, scope retrieval, report management, and balance checks via natural language.

GitHubEmbed

Описание

Connects Claude to the HackerOne Hacker API, enabling program listing, scope retrieval, report management, and balance checks via natural language.

README

An MCP server that connects Claude to the HackerOne Hacker API. List your programs, pull structured scope, read and submit reports, browse Hacktivity, and check your balance — all from inside Claude Code.

Tools

Tool What it does
test_connection Verify credentials work (run this first)
list_programs List programs you can access
get_program Full details for one program by handle
get_program_scope Structured scope (in-scope assets), filter by bounty/submission
get_program_weaknesses Accepted weakness (CWE) types
get_scope_exclusions Out-of-scope categories
search_scope Search a keyword across ALL your programs' scopes
list_my_reports Reports you've submitted
get_report One report by ID (activities, bounties, state)
submit_report Submit a new vulnerability report
hacktivity Query publicly disclosed reports for intel
get_balance / get_earnings / get_payouts Money
hackerone_api Raw passthrough for any other endpoint

Setup

1. Get an API token

Go to https://hackerone.com/settings/api_token/edit, create a token, and note both the identifier (username) and the token value.

2. Install deps

cd ~/projects/hackerone-mcp
uv venv .venv
uv pip install --python .venv/bin/python -r requirements.txt

3. Add credentials

cp .env.example .env
# edit .env and fill in HACKERONE_API_USERNAME + HACKERONE_API_TOKEN

The server auto-loads .env from this folder — nothing else to configure.

4. Test

.venv/bin/python -c "import hackerone_mcp as h; print(h.test_connection())"

5. Register with Claude Code

claude mcp add hackerone -- ~/projects/hackerone-mcp/.venv/bin/python ~/projects/hackerone-mcp/hackerone_mcp.py

Then in Claude: "list my HackerOne programs" or "pull the scope for program X".

To register only for the current project instead, add --scope project.

Manual config (any MCP client)

{
  "mcpServers": {
    "hackerone": {
      "command": "/home/kali/projects/hackerone-mcp/.venv/bin/python",
      "args": ["/home/kali/projects/hackerone-mcp/hackerone_mcp.py"]
    }
  }
}

Credentials come from .env, or set HACKERONE_API_USERNAME / HACKERONE_API_TOKEN in the env block of the config.

Notes

  • Base URL: https://api.hackerone.com/v1, HTTP Basic auth.
  • submit_report creates a real report — review details before calling.
  • .env is gitignored; never commit your token.

from github.com/abdugafforov-bobur/hackerone-mcp

Установка HackerOne

У этого сервера нет опубликованного пакета — он собирается из исходников. Открой репозиторий и следуй инструкции в README.

▸ github.com/abdugafforov-bobur/hackerone-mcp

FAQ

HackerOne MCP бесплатный?

Да, HackerOne MCP бесплатный — установка в пару кликов через Unyly без оплаты.

Нужен ли API-ключ для HackerOne?

Нет, HackerOne работает без API-ключей и переменных окружения.

HackerOne — hosted или self-hosted?

Доступен hosted-вариант: Unyly запускает сервер в облаке, локальная установка не обязательна.

Как установить HackerOne в Claude Desktop, Claude Code или Cursor?

Открой HackerOne на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.

Похожие MCP

Compare HackerOne with

Не уверен что выбрать?

Найди свой стек за 60 секунд

Автор?

Embed-бейдж для README

Похожее

Все в категории ai