The crowdsourced model finds an average of seven times the number of high priority vulnerabilities as compared to pentesting, and uncovers an average of eight critical, unknown vulnerabilities within the first 30 days. Choose how you engage the crowd with public or private, on-going or on-demand programs.

 

Program ExperienceVulnerability DisclosurePrivate Bug Bounty
Next-Gen Pentest
Public Bug Bounty
Vulnerability Validation
Yes
Yes
Yes
Vulnerability Triage
Yes
Yes
Yes
Platform Training
Yes
Yes
Yes
Customer Support
Yes
Yes
Yes
Account Manager
Yes
Yes
Yes
Launch Support
Yes
Yes
Yes
Continuous Testing
Yes
Yes
Yes
Time-Boxed Testing
No
Yes
No
Program ExposureVulnerability DisclosurePrivate Bug Bounty
Next-Gen Pentest
Public Bug Bounty
Private
No
Yes
No
Public
Yes
No
Yes
Testing CoverageVulnerability DisclosurePrivate Bug Bounty
Next-Gen Pentest
Public Bug Bounty
Narrow Scope
No
Yes
Yes
Focused Scope
Yes
Yes
Yes
Broad Scope
Yes
No
Yes
Reward ModelVulnerability DisclosurePrivate Bug Bounty
Next-Gen Pentest
Public Bug Bounty
Points only
Yes
No
No
Points + $
No
Yes
Yes
Researcher EngagementVulnerability DisclosurePrivate Bug Bounty
Next-Gen Pentest
Public Bug Bounty
Invitation Only
No
Yes
No
ID Verification
No
Yes
No
Background Check
No
Yes
No
Platform Features & Add-OnsVulnerability DisclosurePrivate Bug Bounty
Next-Gen Pentest
Public Bug Bounty
CVSS v3 Calculator
Yes
Yes
Yes
Auto-Escalation
Yes
Yes
Yes
Known Issue Sharing
Yes
Yes
Yes
PCI Report$$$
Traffic Control
No
Yes
Yes
Retesting$$$
IntegrationsVulnerability DisclosurePrivate Bug Bounty
Next-Gen Pentest
Public Bug Bounty
HipChat
Yes
Yes
Yes
JIRA
Yes
Yes
Yes
Qualys
Yes
Yes
Yes
Slack
Yes
Yes
Yes
Trello
Yes
Yes
Yes
Embedded Submission Form
Yes
No
No
Email Intake
Yes
No
No