Skip to content

Rhynorater/bbReportFormatter

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
README.md
README.md
 
 
bbReportFormatter.json
bbReportFormatter.json
 
 
bbrf.py
bbrf.py
 
 
comment
comment
 
 
install.sh
install.sh
 
 
req
req
 
 
resp
resp
 
 

Repository files navigation

bbReportFormatter

bbReportFormatter (bbrf) is a tool to be used with the write_hackerone_report fabric pattern to format the report data and store various request/response/comments for consumption by the AI.

Usage:

echo "GET /" | bbrf # Store a request
echo "HTTP/1.1 200 OK" | bbrf # Store a response
echo "This request is vulnerable to IDOR..." | bbrf # Store a comment

These will store the various items into their respective categories. Then

bbrf --print-report | fabric --sp write_hackerone_report

Will generate the AI-power bug bounty report.

Installation

  1. Clone the repo
  2. Run chmod +x install.sh; ./install.sh and never move the project.

BBReportFormatter's Caido Convert Workflow

This is a bit of a hack right now, but you can use a Caido convert workflow to call out to bbrf. Once you install the workflow (see the JSON file in the repo), simply right click on your request/response and trigger the convert workflow. It will call out to the commandline and store it in bbrf.

You my need to modify the workflow if you're using WSL to say wsl -- bbrf in the shell node instead of just bbrf.

Disclaimer

This is a work in progress! Please feel free to open issues or make PRs.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

10 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages