By Bugcrowd Feb 16, 2021Complete Guide to Pentesting Penetration testing is a key cybersecurity best practice. Most organizations understand the need for it, but like many things in the industry, penetration testing can be a bit confusing. This blog covers penetration testing 101, helping to uncover the basics,… Read More
By Bugcrowd Product Marketing Jan 20, 2021Top Challenges of Traditional Pen Tests Penetration testing (or pen testing) has become common practice for vulnerability assessment over the past decade. There are several reasons why people do pen tests. Identifying risky vulnerabilities for developers to address is great practice for risk reduction. That being… Read More
By Bugcrowd Dec 3, 2020The Difference Between Bug Bounty and Next Gen Pen Test Last year we launched Next Generation Penetration Test (NGPT). It’s a new product with unique platform capabilities to meet organizations’ evolving application security needs as focused external threats grow at an accelerated pace. The next generation of pentesting can deliver… Read More
By Omar Carmical Sep 3, 2019Next Gen Pen Test – The Researcher’s Role Since 2013, security researchers have helped Bugcrowd change how the world performs security testing at scale. For many, that meant replacing traditional pen tests with the dynamic and continuous coverage only possible through crowdsourced programs like bug bounties. However, an… Read More
By Bugcrowd May 21, 2019Why bug bounty programs have always been about the evolution of penetration testing During RSA, Bugcrowd founder and CTO Casey Ellis sat down with CyberScoop’s Greg Otto to discuss the future of work and how bug bounty programs have always been about the evolution of penetration testing. Below are a few highlights. You… Read More
By Bugcrowd Product Marketing Apr 16, 2019Taking Back Pen Tests- From Requirement to Necessity Is my stuff secure? At their core, penetration tests answer two critical questions: Is my stuff secure? How do you know? Q1 is pretty straightforward. If the answer is ‘no,’ then Q2 consists of a list of vulnerabilities discovered. But… Read More
By Bugcrowd Apr 9, 2019ESG Report: Crowdsourced Security Making Waves Last week we released the ESG Research Insights Report, Security Leadership Study – Trends in Application Security, revealing what CISOs are looking to prioritize in the year to come. With the ever-expanding threat landscape and increasingly sophisticated adversaries, organizations are… Read More
By Bugcrowd Researcher Success Apr 1, 2019New Platform Feature – Advanced Program Search Today we are launching Advanced Program Search on the Programs list page, an expansive search feature that allows researchers to more easily surface programs that suit their interests. This feature leverages the tokenized search functionality that we have in other… Read More
By Bugcrowd Nov 14, 2018New Next Gen Pen Test Brings the Best of Crowdsourced Security to Pen Testing Today, we announced a new product designed to meet the changing security needs of today’s enterprise: Bugcrowd Next Gen Pen Test. According to our recent survey of 200 security leaders, 56% are dissatisfied with their current pen test efforts, and… Read More
By Bugcrowd Nov 13, 2018Bugcrowd Releases Vulnerability Rating Taxonomy 1.6 Our most recent VRT Council led us through an interesting discussion, ultimately leading us to expedite the release of VRT 1.6. The release includes two major changes: revision to internal SSRF, and how we rate email spoofing, more specifically the… Read More