HackEDU has launched an integration with HackerOne which allows your organization to automatically use the vulnerabilities found in your bug bounty programs to build dynamic training plans for your developers.
This works with both private and public bug bounty programs!
Follow the steps below to set up your integration.
You must be both a HackEDU and HackerOne customer.
Generate a HackerOne API Key
Follow the instructions in HackerOne's documentation to create an API Key here:
Set up integration in HackEDU admin dashboard.
Log in to HackEDU with an Admin account, and go to your admin dashboard.
Click Settings > Data Integrations in the left menu
Click Add Integration
4. Select HackerOne from our list of Integrations
5. Choose whether to apply these vulnerabilities to your entire organization or just to specific teams.
6. Enter your HackerOne API Token Identifier and API Token for the integration, and click Continue. We recommend setting up a token specific for this integration.
7. If you have multiple HackerOne programs, you will be prompted to select which you would like to apply to the integration.
8. Confirm the details of your integration and click Finish.
9. Your integration will automatically begin to sync, and will re-sync once a day. You can click on the integration to see the data we've synced, and to open the original Hacktivity reports.
Setting up Adaptive Training plans
Now that you have vulnerability data available, you may set up an Adaptive Training plan that customizes your training based on the results of the vulnerability data.