HackerOne is the leading hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be criminally exploited.
Provides tools for interacting with the HackerOne API to manage vulnerability reports, bug bounty programs, and earnings, including capabilities to submit findings, respond to triage, and analyze hunting patterns.
Provides read-only access to HackerOne reports, program scopes, and bounty earnings through the HackerOne API. It enables users to analyze hunting patterns, check asset eligibility, and retrieve report details or triage conversations via natural language.
Last updated
9
39
Why this server?
Provides tools for interacting with HackerOne's API, enabling users to list and retrieve reports, list programs, and get program scopes and details.
Enables MCP clients like Claude and Codex to interact with HackerOne's API to list and get reports, programs, and scopes.
Last updated
0
1
MIT
Why this server?
Supports security testing and reconnaissance for bug bounty programs, including subdomain enumeration, vulnerability scanning, and report generation for authorized assessments.
Professional security testing server with 50+ integrated tools for web application vulnerability scanning, reconnaissance, fuzzing, and API testing. Enables comprehensive bug bounty hunting workflows including subdomain enumeration, XSS/SQLi detection, and automated security assessments.
Last updated
MIT
Why this server?
Integrates with HackerOne to fetch and search personal and public bug bounty reports, programs, and scopes, enabling AI-assisted vulnerability analysis and attack briefing generation.
Connects AI assistants to HackerOne to pull bug bounty history, program scopes, and report details into a local SQLite database, exposing tools for searching, analyzing, and generating attack briefings using both personal and public disclosed reports.
Last updated
311
MIT
Why this server?
Provides passive reconnaissance using Shodan, with scope validation against HackerOne program snapshots to ensure only in-scope targets are queried.
A comprehensive MCP server for automated bug bounty hunting and security reconnaissance, featuring over 28 specialized tools for subdomain discovery, vulnerability scanning, and traffic analysis. It integrates automated scope validation and professional reporting across multiple platforms like HackerOne and Bugcrowd to streamline security testing.
Last updated
5
Why this server?
Loads HackerOne program scope from local H1-Scope-Watcher snapshots to enforce scope boundaries during recon activities.
A local Python MCP server for safe, human-led bug bounty recon, providing lightweight helpers for scope checks, headers, robots.txt, sitemap.xml, JavaScript URL collection, endpoint extraction, URL deduplication, evidence notes, and manual test planning.