Skip to content

sokaRepo/bugbounty

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

BugBounty Web App alt text

Introduction

This web application is built with Flask, a web Python framework based on Jinja: Flask official web site.

About the project

The web app's goal is to help BugBounty Hunters to manage their BugBounties and Target list.

Dependencies

  • Pip
cd /tmp/
wget https://bootstrap.pypa.io/get-pip.py
python get-pip.py
rm get-pip.py
  • Install all requirements
pip install -r requirements.txt

Run App

  • Run on localhost
python app.py
  • with Flask command
export FLASK_APP=app.py
flask run
  • To run the app trough network edit app.py
flask run --host 0.0.0.0

Run through Apache

Create a new conf in /etc/apache2/sites-available/

vim /etc/apache2/sites-available/bugbounty.conf

and change the conf above with your current configuration :

<VirtualHost *:80>
    ServerName dashboard.toto.com
    ServerAdmin bob@toto.com
    WSGIScriptAlias / /var/www/toto.com/bugbounty/bugbounty.wsgi
    <Directory /var/www/toto.com/bugbounty/>
            Order allow,deny
            Allow from all
    </Directory>
    Alias /static /var/www/toto.com/bugbounty/static
    <Directory /var/www/toto.com/bugbounty/static/>
            Order allow,deny
            Allow from all
    </Directory>
    ErrorLog ${APACHE_LOG_DIR}/error.log
    LogLevel warn
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>

In the App folder, change the bugbounty.wsgi file content:

import sys
sys.path.insert(0, '/var/www/toto.com/bugbounty/')
from app import app as application

and in utils.py, change this line with the absolute path to the Database App:

top.sqlite_db = sqlite3.connect('/var/www/toto.com/bugbounty/dashboard.sqlite')

Features

  • Authentication with username/[sha1]password stored in database (default: admin/admin)
  • Bug Bounty programs scrapped from Vuln-Lab, BugCrowd, HackerOne and BountyFactory
  • Add bounty in database (click on the pink (+) button)
  • Switch bounty's status (click on the status: (Open) | (Close) )
  • Edit bounty's data
  • Delete bounty
  • Temporary notifications via JQuery
  • XSS Lab
  • Manage your targets

About

WebApp for BugBounty Hunters

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published