HackEDU has launched an integration with Bugcrowd which allows your organization to automatically use the vulnerabilities found in your bug bounty programs to build dynamic training plans for your developers.
Follow the steps below to set up your integration.
You must be both a HackEDU and Bugcrowd customer.
Generate a Bugcrowd API Key
Log in to Bugcrowd Crowdcontrol
Type "HackEDU" under Application Name and click Create credentials
Set up integration in HackEDU admin dashboard
Log in to HackEDU with an Admin account, and go to your admin dashboard.
Click Settings > Data Integrations in the left menu
Click Add Integration
4. Select Bugcrowd from our list of integrations
5. Choose whether to apply these vulnerabilities to your entire organization or just to specific teams.
Note: You can click the link on this page to see what data we have access to and what we save by continuing with the integration. You can read about HackEDU's security and data policies here.
6. Enter your Bugcrowd Basic Authentication Username and Password for the integration, and click Continue.
7. If you have multiple Bugcrowd programs, you will be prompted to select which you would like to apply to the integration.
8. Confirm the details of your integration and click Finish.
9. Your integration will automatically begin to sync, and will re-sync once a day. You can click on the integration to see the data we've synced, and to open the original Bugcrowd submissions.
Setting up Adaptive Training plans
Now that you have vulnerability data available, you may set up an Adaptive Training plan that customizes your training based on the results of the vulnerability data.