Strands Agents tool for accessing hackerone
Project description
Strands HackerOne
HackerOne API tool for Strands Agents. Automate bug bounty research, program monitoring, and report management with AI.
Installation
pip install strands-hackerone
Setup
Get API credentials from HackerOne Settings:
export HACKERONE_USERNAME="your_username"
export HACKERONE_API_KEY="your_api_key"
Usage
Standalone
from strands_hackerone import hackerone
# List programs
hackerone(action="programs", limit=10)
# Check hacktivity
hackerone(action="hacktivity", query="severity:critical")
# View balance
hackerone(action="balance")
With Strands Agent
from strands import Agent
from strands_hackerone import hackerone
agent = Agent(tools=[hackerone])
agent("Find high-paying programs accepting XSS vulnerabilities")
Actions
| Action | Description | Parameters |
|---|---|---|
programs |
List bug bounty programs | page, limit |
program_info |
Get program details | program_handle |
program_scope |
View program scope | program_handle, page, limit |
program_weaknesses |
List accepted vulnerability types | program_handle, page, limit |
hacktivity |
Browse public disclosures | query, page, limit |
my_reports |
List your reports | page, limit |
report_details |
Get report details | report_id |
balance |
Check current balance | - |
earnings |
View earnings history | page, limit |
payouts |
View payout history | page, limit |
Examples
Search hacktivity
# Critical vulnerabilities
hackerone(action="hacktivity", query="severity:critical")
# High bounties
hackerone(action="hacktivity", query="bounty:>5000")
# Specific program
hackerone(action="hacktivity", query="program:security")
Get program info
hackerone(action="program_info", program_handle="security")
hackerone(action="program_scope", program_handle="github")
hackerone(action="program_weaknesses", program_handle="security")
Track your activity
hackerone(action="my_reports", limit=25)
hackerone(action="report_details", report_id="274387")
hackerone(action="balance")
hackerone(action="earnings", page=1, limit=50)
AI Agent Examples
Research Assistant
agent = Agent(
tools=[hackerone],
system_prompt="Bug bounty research assistant"
)
agent("Find programs with web apps in scope that offer fast payments")
Monitor
agent = Agent(
tools=[hackerone],
system_prompt="Monitor HackerOne for important events"
)
agent("Check for new critical disclosures in the last 24 hours")
Output Format
All actions return:
{
"status": "success" | "error",
"content": [{"text": "formatted_output"}]
}
Example output:
🔥 HackerOne Hacktivity (Page 1)
🎯 Stored XSS in Profile Editor
Program: gitlab
Severity: high
Bounty: $3,500
🎯 SQL Injection in API Endpoint
Program: shopify
Severity: critical
Bounty: $10,000
Troubleshooting
401 Unauthorized
Check HACKERONE_USERNAME and HACKERONE_API_KEY
403 Forbidden
You must be enrolled in the program
Rate Limited
Reduce request frequency, use pagination, cache results
Development
git clone https://github.com/cagataycali/strands-hackerone.git
cd strands-hackerone
pip install -e .
python test_hackerone.py
Resources
License
MIT
Author
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
strands_hackerone-0.1.1.tar.gz
(10.0 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file strands_hackerone-0.1.1.tar.gz.
File metadata
- Download URL: strands_hackerone-0.1.1.tar.gz
- Upload date:
- Size: 10.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.14
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
d57fd70574ea643bed9710302b2c9040657ddefd3c1e11ab794d8ea0d660e492
|
|
| MD5 |
f173913a2bf6cd8b892d11633f0cc4ef
|
|
| BLAKE2b-256 |
536514bc099a1cf11e548909c867496852688e5c935b3753ad4c74e08366a571
|
File details
Details for the file strands_hackerone-0.1.1-py3-none-any.whl.
File metadata
- Download URL: strands_hackerone-0.1.1-py3-none-any.whl
- Upload date:
- Size: 8.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.14
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
a9b54b9a302155b18fdb0af04b8b154cf9108ac25d469ff5eab0f580079c4695
|
|
| MD5 |
0f87b4be8fae5c6e447f2f269d000e01
|
|
| BLAKE2b-256 |
875f9150f208f5340e2565f89be4e4f53fadc04dd26b296b07ab091c8899c582
|
