By Amp Somers Nov 22, 2020Announcing our P1 Warriors for Q3 2020! Warriors are defined as “brave and experienced soldiers who specialize in combat,” so it’s that time of the year again where we get to announce who made it into the next tier of our P1 Warrior Program for Q3! This… Read More
By Amp Somers Nov 21, 2020Announcing our MVPs for Q3! As a platform, Bugcrowd has no limit to the amount of amazing researchers who work their butts off to squash some incredible bugs, but every once and a while a researcher comes along and reaches a level that we can’t… Read More
By Michael Skelton Sep 30, 2020How-To: FFUF with Codingo One of the areas we’re most passionate about here at Bugcrowd is hacker education, and elevating the Crowd to new heights. This extends beyond our roles and is something many of us are passionate about in our personal time as… Read More
By Ryan Black Oct 26, 2018Halloween Hacks and How to Avoid Them #SecOps Edition It’s almost Halloween — the one night of the year when witches, ghosts, and vampires roam the streets. And if you thought those were scary, think again. In our connected world, cyber threats and attacks are lurking all around us,… Read More
By Bugcrowd Researcher Success Sep 17, 2018Bugcrowd Badge Challenge Writeup A few weeks ago, we wrote about our learnings from designing and building a badge for the first time for DEF CON 26. One area we would like to rethink for next year is the approach to the badge challenge,… Read More
By Bugcrowd Researcher Success Aug 7, 2018Launching Bugcrowd University At Bugcrowd, we take great pride in the diversity of our community. We’re excited by the opportunity that we have every day to work with researchers of all backgrounds, interests, and skills. Today, we’re excited to launch our latest effort in… Read More
By Bugcrowd Researcher Success Apr 13, 2018Bugcrowd announces LevelUp 0x02, the virtual hacking conference Hi everyone! Bugcrowd is very excited to announce LevelUp 0x02, the free, online bug bounty hunter conference! On May 26, 2018, we will host the all-day conference featuring presentations from bug bounty hunters and penetration testers, sharing best practices, strategies,… Read More
By Bugcrowd Feb 13, 2018Researcher Documents Updates In order for Researchers to be successful, it is vital to clearly communicate expectations. We have refined verbiage in both the Bugcrowd Standard Disclosure Terms and the Bugcrowd Researcher Code of Conduct, and these changes are highlighted below: In the… Read More
By Bugcrowd Researcher Success Jan 5, 20182018 Predictions: It Takes a Crowd At the end of 2017 we asked our researcher community what changes they predicted for the bug bounty space in the year to come. The response was overwhelmingly the same: more companies adopting bug bounties across company size and industry… Read More
By Bugcrowd Researcher Success Nov 9, 2017How-To: Find IDOR (Insecure Direct Object Reference) Vulnerabilities for large bounty rewards The following is a guest blog post from Mert & Evren, two talented researchers from Turkey. IDOR vulnerabilities are of the higher impact and higher paying vulnerabilities for web bug bounties. This article explores what IDORs are and how to find them. Read More