Certain programs require you to have your own VPN instance and credentials on the HackerOne VPN in order to search for vulnerabilities. You can configure the HackerOne VPN to start your own VPN instance and retrieve your credentials.
Note: The VPN is currently only enabled for a few select programs. You can only access the VPN Credentials if you've accepted an invitation to a VPN enabled program.
To configure the HackerOne VPN:
- Install the HackerOne VPN Root CA.
- Download your VPN Credentials from HackerOne (See: Accessing your VPN Credentials below)
- Configure your OpenVPN Client.
Once you've configured the HackerOne VPN and accepted an invitation to a VPN enabled program, to access your VPN Credentials:
- Go to your Settings > VPN.
- Click Create credentials to generate your VPN credentials. Note: It'll take a few minutes to generate your credentials. Sorry for the wait!
- Click Download to download the
- Import the
hackerone.ovpnfile in the OpenVPN client that you've configured.
You'll be able to access your VPN credentials and work securely within the HackerOne VPN to search for vulnerabilities. Every hacker will have their own VPN instance. You can check to see that your VPN instance is running successfully on the VPN page.
If you have trouble installing the VPN, or have additional feedback, please reach out to firstname.lastname@example.org