4s0ck3t/bounty-targets-data

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

MIT

bounty-targets-data

What's it for

This repo contains data dumps of Hackerone and Bugcrowd scopes (i.e. the domains that are eligible for bug bounty reports). The files provided are:

Main files:

domains.txt: full list of domains, without wildcards.
wildcards.txt: full list of wildcard domains. Note: A program might have *.example.com in-scope but excluded.example.com out-of-scope so check your program rules before submitting reports.

Extra files:

bugcrowd_data.json: raw Bugcrowd data.
hackerone_data.json: raw Hackerone data.
federacy_data.json: raw Federacy data.
hackenproof_data.json: raw Hackenproof data.
intigriti_data.json: raw Intigriti data.
yeswehack_data.json: raw YesWeHack data.
hackerone_schema.graphql: Hackerone's graphql api schema.

Status

The last change was detected on Tuesday 09/07/2021 03:31 (UTC). New changes (if any) are picked up hourly.

Code

The code used to generate these files lives in the bounty-targets repo.

Getting in touch

Feel free to contact me on twitter: https://twitter.com/arkadiyt