Customers

By adding a managed bug bounty program through Bugcrowd, we are adding one more layer to our security program. Tejas Shah
CIO at NETGEAR

Utilizing Bugcrowd's whitehat hackers levels the playing field, and helps Pinterest find and fix vulnerabilities proactively instead of reactively. Paul Moreno
Security Engineering Lead, Pinterest

For us, the managed approach reduced required time and effort by at least 80% - freeing up our security team to focus on implementing remediations and other important components of our security program. Johnathan Hunt
VP, Information Security, InVision

An underrated benefit of Bugcrowd is the service their Application Security Engineers provide in triaging incoming reports. They free up our Security Engineering Team to focus attention on building security in by design and addressing issues directly with dev teams. Daniel Grzelak
Head of Security, Atlassian

Featured Public Programs

$100 - $5,000 Per Bug

Kudos - $1,000 Per Bug

$100 - $15,000 Per Bug

$100 - $3,000 Per Bug

See Solutions

Dash

Learn how Dash hardens its cryptocurrency with a Bugcrowd public bug bounty.

Motorola

Find out how Motorola Mobility reduces risk with Bugcrowd.

InVision

Learn more about how a fully managed bug bounty program helped InVision’s security team save 80% of their time running their bounty program.

Intercom

After running a private bug bounty program, Intercom launched a public program to bolster their application security efforts.

Indeed.com

Through our bug bounty program we have awarded over 300 submissions in the past year and a half, with payouts as high as $5,000 for the most severe bugs.

HP

Learn how Bugcrowd enables HP to deliver the most secure printers.

TaxSlayer

Learn how TaxSlayer keeps taxpayers data safe and secure with Bugcrowd.

NETGEAR

NETGEAR’s bug bounty program offers rewards up to $15,000 and is innovating the way device manufacturers approach security.

DigitalOcean

Learn more about Digital Ocean’s public bug bounty program and why they chose to engage with the crowd

“Our bug bounty plays a key role in our product security program. It has helped us to define and shape this program. We are getting access to a large talent pool who are incentivized to test, find and report security vulnerabilities on our platform. This is a win-win situation for everyone.”

Okta

“Efficiency and effectiveness of the crowd is really why we bring them on… Because we have the crowd involved in the vulnerability management program, it’s helped in expanding of our team for a fraction of the cost. Now my internal resources are better utilized.”

Fitbit

Learn more about why Fitbit utilizes the crowd to improve product security and focus testing efforts.

Western Union

As a complex financial services organization, Western Union needs to fill any and all security gaps. Watch the video to learn how the crowd helps.

Fiat Chrysler Automobiles

FCA US is the first full-line automaker to offer a paid public bug bounty program, leveraging Bugcrowd to enhance the safety and security of FCA US consumers, their vehicles and connected services with bounty payouts up to $1,500.

Aruba Networks

Learn why Aruba Networks commits to ongoing private bug bounty programs to deliver better device security.

Instructure

Learn why instructure upgraded their traditional penetration testing with NGPT for its Annual Security Audit.

OWASP

The Open Web Application Security Project (OWASP) utilizes to Bugcrowd to run bounty programs on their open source security tools to add an extra layer of trust to tools used by hundreds of security teams.

Barracuda Networks

Barracuda has a rich history of working with the bug bounty community. By partnering with Bugcrowd, Barracuda is hoping to reach more researchers and improve the experience researchers have with the program.

Atlassian

Learn how a fully managed bug bounty program helped Atlassian uncover vulnerabilities faster, freeing up more time to find anti-patterns and implementing broad mitigations.

Skyscanner

Stuart Hirst, IT Security Manager for Skyscanner, reveals why their security team turned to Bugcrowd’s On-Demand bounty to improve the security of their code and allow them to further develop our ‘Hack Yourself First’ approach.

Kenna Security

Find out how Kenna Security garners more value from Bugcrowd than with other firms and tools.

(ISC)²

Since 2013, (ISC)² has been both a customer and a partner of Bugcrowd, running a public bug bounty program and offering CPE credits to those maintaining their CISSP certification.