A Chrome extension to extract program descriptions from YesWeHack program pages and export them as JSON, TXT, or Markdown.
- Extracts program data from the active YesWeHack program page
- Exports in three formats: JSON, TXT, Markdown
- Dark-themed popup UI
- Extracts:
- Program title, URL, type, visibility
- Full program description
- Reward grid (Low / Medium / High / Critical)
- All in-scope assets with type, report count, and asset value
- Out-of-scope items
- Qualifying and non-qualifying vulnerability types
- User-agent requirement
- Download the latest
.zipfrom the Releases page - Unzip the archive
- Open
chrome://extensionsin Chrome - Enable Developer mode (top-right toggle)
- Click Load unpacked and select the unzipped folder
git clone https://github.com/GRodolphe/YWHGetDesc.gitThen load the cloned folder as an unpacked extension (same steps 3-5 above).
- Navigate to a YesWeHack program page (e.g.
https://yeswehack.com/programs/<program-name>) - Click the extension icon in the toolbar
- The popup shows the program title and scope count
- Click JSON, TXT, or MD to download the extracted data
Structured object with all extracted fields, suitable for programmatic use.
Human-readable plain text with sections for rewards, description, scopes, and vulnerability types.
Formatted markdown with tables for rewards and scopes, bullet lists for vulnerabilities.
YWHGetDesc/
manifest.json # Chrome extension manifest (MV3)
content.js # Content script - DOM extraction logic
popup.html # Extension popup UI
popup.js # Popup logic and download handling
icons/
icon48.png # Toolbar icon
icon128.png # Extension page icon
activeTab- Access the current tab only when the extension icon is clicked
Releases are automated via GitHub Actions. To create a new release:
- Create and push a version tag:
git tag v1.0.0 git push origin v1.0.0
- The workflow builds a
.zippackage, generates an SBOM (CycloneDX format), and attaches both to the GitHub release.
MIT