By Bugcrowd Dec 3, 2020The Difference Between Bug Bounty and Next Gen Pen Test Last year we launched Next Generation Penetration Test (NGPT). It’s a new product with unique platform capabilities to meet organizations’ evolving application security needs as focused external threats grow at an accelerated pace. The next generation of pentesting can deliver… Read More
By Lauren Craigie Apr 21, 20207 Things Traditional Pen Testing Promised Why do we perform security testing? Lots of reasons- like ensuring we take steps to protect data, avoid downtime, promote transparency, and the list goes on. But why pen test, in particular? If we assume, for the purposes of this… Read More
By Omar Carmical Sep 3, 2019Next Gen Pen Test – The Researcher’s Role Since 2013, security researchers have helped Bugcrowd change how the world performs security testing at scale. For many, that meant replacing traditional pen tests with the dynamic and continuous coverage only possible through crowdsourced programs like bug bounties. However, an… Read More
By Bugcrowd May 21, 2019Why bug bounty programs have always been about the evolution of penetration testing During RSA, Bugcrowd founder and CTO Casey Ellis sat down with CyberScoop’s Greg Otto to discuss the future of work and how bug bounty programs have always been about the evolution of penetration testing. Below are a few highlights. You… Read More
By Lauren Craigie Apr 16, 2019Taking Back Pen Tests- From Requirement to Necessity Is my stuff secure? At their core, penetration tests answer two critical questions: Is my stuff secure? How do you know? Q1 is pretty straightforward. If the answer is ‘no,’ then Q2 consists of a list of vulnerabilities discovered. But… Read More
By Bugcrowd Apr 9, 2019ESG Report: Crowdsourced Security Making Waves Last week we released the ESG Research Insights Report, Security Leadership Study – Trends in Application Security, revealing what CISOs are looking to prioritize in the year to come. With the ever-expanding threat landscape and increasingly sophisticated adversaries, organizations are… Read More
By Bugcrowd Researcher Success Apr 1, 2019New Platform Feature – Advanced Program Search Today we are launching Advanced Program Search on the Programs list page, an expansive search feature that allows researchers to more easily surface programs that suit their interests. This feature leverages the tokenized search functionality that we have in other… Read More
By Bugcrowd Nov 14, 2018New Next Gen Pen Test Brings the Best of Crowdsourced Security to Pen Testing Today, we announced a new product designed to meet the changing security needs of today’s enterprise: Bugcrowd Next Gen Pen Test. According to our recent survey of 200 security leaders, 56% are dissatisfied with their current pen test efforts, and… Read More
By Bugcrowd Nov 13, 2018Bugcrowd Releases Vulnerability Rating Taxonomy 1.6 Our most recent VRT Council led us through an interesting discussion, ultimately leading us to expedite the release of VRT 1.6. The release includes two major changes: revision to internal SSRF, and how we rate email spoofing, more specifically the… Read More
By Bugcrowd Nov 9, 2018Movember’s Next Gen Pen Test Since 2003, Movember has raised awareness and funds for men’s health. With more than 5 million Mo Bros and Mo Sistas around the world participating in this cause, the security of the foundation’s platform is incredibly important. Like many organizations,… Read More