By Bugcrowd Researcher Success Jul 14, 2015Advice From A Researcher: How To Approach A Target Editor’s Note: Today I’d like to introduce you to Bugcrowd member Anshuman Bhartiya (anshuman_bh). As an information security professional as well as bug bounty researcher, Anshuman has helped improve the security of many organizations. He has submitted several P1 & P2 bugs leading to his high standing within the programs he is involved in. As an active member on our Bugcrowd forum he also contributes to the bug bounty researcher community. This blog is from one of his responses on the forum that he has allowed us to post here. We are thrilled to share his thoughts and experience on how to successfully approach a target. Thanks! Read More
By Bugcrowd Researcher Success Jul 8, 2015How I Got Into Security: Duarte Silva Editor’s Note: Bugcrowd community researcher, Duarte Silva, shares the story behind how he started working in information security. Duarte is one of Bugcrowd’s top researchers, you can follow him on Twitter at @serializingme. Read More
By Bugcrowd Researcher Success Jul 6, 2015June 2015 Hall Of Fame It is time for the June 2015 Hall of Fame, and this month was a close race for the top 3 spots with just 2 points between 2nd and 3rd place. To thank these individuals for their hard work, Bugcrowd is pleased to announce the following researchers will receive June 2015 performance bonuses Read More
By Bugcrowd Jul 3, 2015Advice From A Researcher: Hunting XXE For Fun and Profit About the Author: Ben Sadeghipour has been participating in bug bounty programs since February of 2014. After his first few bugs, he came to realize that bug bounties are a great way to learn more about web application security as well as make some extra money while going to school – computer science major. Currently Ben is an intern at Bugcrowd and continues to do bug bounty research. You can see more of his work on nahamsec.com. Read More
By Kaila Pollart Jun 5, 2015May 2015 Hall of Fame It is time for the May 2015 Hall of Fame, and this month was a close race for the top 3 spots with just 8 points between 1st and 3rd place. To thank these individuals for their hard work, Bugcrowd is pleased to announce they’ll receive performance bonuses. Read More
By Bugcrowd Researcher Success Jun 2, 2015Adventures in Reverse Engineering One thing we like to highlight at Bugcrowd is creating lasting positive relationships between clients and talented researchers. Today one of our crowd, Duarte Silva, released some of his work on reverse engineering Aruba Networks ArubaOS Firmware package. Some time… Read More
By Bugcrowd Researcher Success May 18, 2015Jason Haddix joins Bugcrowd as Director of Technical Operations Today we are excited to announce that Jason Haddix has joined Bugcrowd as our Director of Technical Operations. Jason is one of the most active and talented security consultants in the world, we are very excited and proud to have him on our team. Read More
By Bugcrowd May 11, 2015April 2015 Hall of Fame Like Employee of the Month but better, I’m excited to tell you about the three Crowd members that earned top spots on the April 2015 Hall of Fame. We have a ton of amazing researchers contributing solid bugs every day, but these three ninjas earned the most Kudos points in Bugcrowd bounty programs from April 1 to April 30 2015. To thank them for their hard work, Bugcrowd is pleased to announce they’ll receive performance bonuses. Read More
By Bugcrowd Researcher Success Apr 13, 2015Researcher Interview: Fredrik “Almroot” Almroth We’re joined by Fredrik “Almroot” Almroth, a Bugcrowd community member and highly skilled security researcher. Fredrik has been active in bug bounties since 2010, when he found his first Google vulnerability. Fredrik and his team at Detectify have found vulnerabilities in many of the top bug bounties in the world, including Google and Facebook. He’s one of the most prolific security researchers in the community and it was great to get Fredrik to share some of his tips and tricks. Read More
By Bugcrowd Researcher Success Feb 4, 2015Guest Blog: Best Practices for Quality Bug Hunting by SatishB3 Best Practices for Quality Bug Hunting As bounty programs offer rewards on a first come first serve basis, bug hunters always seem to be in a hurry to unearth the findings as soon as they can. But before participating in… Read More