Hackbot is HackerOne’s free automated service that provides in-context guidance by suggesting key features and actions on the platform in order to save you time and effort.

For example, HackBot can identify potential duplicates and related reports to help you associate and close reports more quickly. It can also identify out of scope domains and suggest a pre-submission trigger that'll warn hackers in the act of submitting a report for the out of scope domain.


Hackbot offers suggestions that are visible only to your security team as internal comments, and it will not require any action on your behalf.

Edit Hackbot Settings

To edit your Hackbot settings:

  1. Go to Program Settings > Program > Automation > Hackbot.
  2. Click the Turn off button for the Hackbot features you want to turn on. We offer these Hackbot options:
Option Details
Suggest triggers Hackbot will suggest you to create a common response when comments are repeated.
Suggest needs more info state Hackbot will suggest when a report should be moved to the Needs more info state.
Suggest pay bounty on triage Hackbot will suggest when you should pay a bounty when the report is triaged.
Suggest integration on triage Hackbot will suggest using an integration when the report is triaged.
Suggest trigger on bad host Hackbot will suggest creating a trigger if a report contains a host that has appeared in more than 80% of N/A reports.
Same comment twice Hackbot will notify you when you've entered a duplicate comment.
Review reporter Hackbot will give you the option to add a review for a hacker.
  1. Click Turn on for the Hackbot features you want to turn off.

We love adding new functionality to Hackbot to make your life easier and more efficient, so let us know if you have any suggestions on how we can make it better.