Guide

Help Wanted


Attention Researchers:

So, as you may or may not know, Bugcrowd runs a large number of private programs that aren’t publicly visible. These private programs range from testing webapps, to APIs, to reverse engineering binaries/desktop apps, to network pentests, and even IoT devices!

That said, sometimes these programs need some pretty specific skill sets that may not be too common – that’s where this page comes in. Listed below are the skills sets needed for current and upcoming private programs.

If you’re looking to participate in any of our specialized programs, please fill out the Fast Track Google form – be sure to include your background, professional experience, and any evidence you can provide to showcase your skills and education. By providing detailed information, it will help us match you to programs based on your preference and skillset, where you can be successful! Please note, if you don’t provide detailed information you will not be considered for private program invites.

Once we are able to review your information, we’ll reach out directly and see about getting you added, or ask for additional information as needed.

 

Program Specific Skills:

  • Methodology Driven Penetration Testing
  • API
  • Embedded devices (IoT/printers/WiFi-enabled-toasters/etc)
  • iOS
  • AWS Certifications (Solutions Architect, etc)
  • Reverse Engineering/Binary Analysis
  • Blockchain/Smart Contracts
  • Recon

 

Additionally, Bugcrowd has a number of private bounty programs that require researchers who have successfully completed a criminal background check. If you are interested in opting into be background checked (this is completely optional and choosing not to opt-in will not in any way affect your standing in the Crowd), please note this when completing the Fast Track Google form.

If you’re interested in any of the above, please fill out the form here (and remember to be as thorough as possible when filling out the form!). Good luck and happy hunting!

Learn the ins and outs of Crowdsourced Security, Managed Bug Bounty and Vulnerability Disclosure ProgramsDownload the Guide
+