# Install bbot with Homebrew, Nix

OSINT automation tool. Version 2.8.4 via Homebrew; verified 2026-06-15.

## Install

```sh
sudo av install brew:bbot
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install bbot
```

  Evidence: local Homebrew formula metadata

### Linux

- Nix (92%):

```sh
nix profile install nixpkgs#bbot
```

  Evidence: nixpkgs package indexes: pkgs/by-name/bb/bbot/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## Package facts

- **Package key:** brew:bbot
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/bbot>
- **Version:** 2.8.4
- **Source summary:** OSINT automation tool
- **Homepage:** <https://www.blacklanternsecurity.com/bbot/>
- **Repository:** <https://github.com/blacklanternsecurity/bbot>
- **Upstream docs:** <https://www.blacklanternsecurity.com/bbot/Stable>
- **License:** AGPL-3.0-only
- **Source archive:** <https://files.pythonhosted.org/packages/6a/83/24a0087894d853703f64ab2044927ef56c831edb379295a873b05f34eb92/bbot-2.8.4.tar.gz>
- **Last updated:** 2026-06-15T10:20:10-04:00
- **Generated:** 2026-07-08T07:18:31+00:00

## Executables

- bbot (cli)
- bbot (alias)

## Dependencies

- certifi
- cryptography
- libyaml
- openssl@3
- pydantic
- python@3.14
- zeromq

## Build dependencies

- cmake
- ninja
- openjdk
- pkgconf
- rust

## Uses from macOS

- libxml2
- libxslt

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 2.8.4
- Package-manager updated: 2026-06-15
- Local data: ok
- Upstream repository: https://www.blacklanternsecurity.com/bbot/
- info: Release/tag comparison is only available for GitHub repositories.
## Project history and usage

BBOT is Black Lantern Security's OSINT, reconnaissance, bug-bounty, and attack-surface-management automation tool. It packages many passive and active discovery modules behind a single `bbot` scanner and preset system.

### Project history

The upstream README describes BBOT as inspired by SpiderFoot and built to automate recon, bug bounties, and ASM. Its examples emphasize repeatable presets for subdomain enumeration, web crawling, email gathering, and web scanning.

The PyPI release metadata shows a 1.0.0 package upload on 2022-08-18. By the current upstream README, the project has stable and development installation tracks, Docker distribution, a public documentation site, and a community Discord.

### Adoption history

BBOT's adoption follows the modern Python security-tool path: PyPI and pipx for primary installation, Docker for isolated runs, GitHub for development, and Homebrew/Nix formulas for users who expect security tooling in system package managers.

### How it is used

Operators use BBOT by giving it targets and presets such as `subdomain-enum`, `spider`, `email-enum`, `web-basic`, or `web-thorough`. Configuration stores module options and API keys, so the same scan recipes can be repeated across assessments.

### Why package nerds care

BBOT is interesting in package history because it is a high-churn security automation tool that still reaches general package managers. It shows how OSINT tooling has moved from one-off scripts toward modular scanners with presets, docs, containers, PyPI packages, and native package-manager entries.

### Timeline

- 2022-08-18: PyPI metadata records BBOT 1.0.0 uploads.
- 2023: Upstream README advertises a DEF CON Recon Village/Demo Labs appearance.
- Current: README documents stable installation with `pipx install bbot`, Docker, and the official documentation site.
- 2026-06-09: PyPI metadata records 3.0.0.986rc0 release-candidate uploads.

### Related projects

- Related projects include SpiderFoot, Amass, Subfinder, httpx, Nuclei, and other reconnaissance and attack-surface-management tools.

### Sources

- <https://github.com/blacklanternsecurity/bbot#readme>
- <https://pypi.org/pypi/bbot/json>
- <https://www.blacklanternsecurity.com/bbot/Stable/>
- input:source_facts.package-manager


## Security Notes

No matching local secret-handling manifest was found for bbot. Nucleus package metadata is still published here so future coverage has a stable package URL.



## Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.


## Configuration files

- Unix: ~/.config/bbot/bbot.yml

## Credential files

- Unix: ~/.config/bbot/bbot.yml
## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** bbot
- **Version Scheme:** 0
- **Revision:** 6
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** stable

## Other Package-Manager Records

- Nix - bbot: normalized package name match | nixpkgs package indexes: pkgs/by-name/bb/bbot/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1


## Related links

- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [Productivity CLI packages](https://www.automicvault.com/pkg/productivity-cli-packages/) - Matched curated productivity category metadata from av.db.
- [openssl@3](https://www.automicvault.com/pkg/brew/openssl-3/) - Runtime dependency declared by Homebrew.
- [python@3.14](https://www.automicvault.com/pkg/brew/python-3-14/) - Runtime dependency declared by Homebrew.
- [zeromq](https://www.automicvault.com/pkg/brew/zeromq/) - Runtime dependency declared by Homebrew.
- [cmake](https://www.automicvault.com/pkg/brew/cmake/) - Build dependency declared by Homebrew.
- [ninja](https://www.automicvault.com/pkg/brew/ninja/) - Build dependency declared by Homebrew.
- [openjdk](https://www.automicvault.com/pkg/brew/openjdk/) - Build dependency declared by Homebrew.
- [pkgconf](https://www.automicvault.com/pkg/brew/pkgconf/) - Build dependency declared by Homebrew.
- [amass](https://www.automicvault.com/pkg/brew/amass/) - Shares av.db curated category or tags: cli, osint, reconnaissance, security.
- [favirecon](https://www.automicvault.com/pkg/brew/favirecon/) - Shares av.db curated category or tags: cli, osint, reconnaissance, security.
- [recon-ng](https://www.automicvault.com/pkg/brew/recon-ng/) - Shares av.db curated category or tags: cli, osint, reconnaissance, security.
- [subfinder](https://www.automicvault.com/pkg/brew/subfinder/) - Shares av.db curated category or tags: cli, osint, reconnaissance, security.
- [theharvester](https://www.automicvault.com/pkg/brew/theharvester/) - Shares av.db curated category or tags: cli, osint, reconnaissance, security.
- [uncover](https://www.automicvault.com/pkg/brew/uncover/) - Shares av.db curated category or tags: cli, osint, reconnaissance, security.
- [csprecon](https://www.automicvault.com/pkg/brew/csprecon/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [findomain](https://www.automicvault.com/pkg/brew/findomain/) - Shares av.db curated category or tags: cli, osint, reconnaissance, security.
- [dnsrobocert](https://www.automicvault.com/pkg/brew/dnsrobocert/) - Both packages touch the same language runtime or ecosystem. Shared terms: automation, certifi, cli, cryptography, libyaml.

## Combined YAML source

View the package source record on GitHub. [combined/bbot.yml](https://github.com/automic-vault/db/blob/main/combined/bbot.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated configuration and credential file locations
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
