List of Bug Bounty
Bug Bounty Programs represent a very good marketing tool for companies that run such programs as well for the bug hunters.Participating in such programs as a security professional, you’ll get continuous security training and it will strengthen your personal branding within the Digital and Information Security industry.
PRODUCT AND SERVICES (HALL OF FAME AND NO REWARD)
- 37signals - https://37signals.com/security-response
- Acquia - https://www.acquia.com/how-report-security-issue
- Active Prospect - http://activeprospect.com/activeprospect-security/
- Adobe - http://www.adobe.com/support/security/alertus.html
- Android Free Apps - http://www.androidfreeapp.net/security-researcher-acknowledgments/
- Apple - http://support.apple.com/kb/HT1318
- Besnappy - http://besnappy.com/security
- Blackberry - http://us.blackberry.com/business/topics/security/incident-response-team/collaborations.html
- Braintree - https://www.braintreepayments.com/developers/disclosure
- Card - https://www.card.com/responsible-disclosure-policy
- cPaperless - http://www.cpaperless.com/securitystatement.aspx
- Chargify - https://chargify.com/security/
- eBay - http://pages.ebay.com/securitycenter/ResearchersAcknowledgement.html
- EVE - http://community.eveonline.com/devblog.asp?a=blog&nbid=2384
- Freelancer - http://www.freelancer.com/info/vulnerability-submission.php
- Future Of Enforcement - http://futureofenforcement.com/?page_id=695
- Gitlab - http://blog.gitlab.com/responsible-disclosure-policy/
- Gliph - https://gli.ph/s/security.html
- Harmony - http://get.harmonyapp.com/security/
- lastpass - https://lastpass.com/support_security.php
- Mahara - https://wiki.mahara.org/index.php/Contributors#Security_Researchers
- MailChimp - http://mailchimp.com/about/security-response/
- Microsoft - http://technet.microsoft.com/en-us/security/cc308589
- Netflix - http://support.netflix.com/en/node/6657#gsc.tab=0
- Nokia - http://www.nokia.com/global/security/acknowledgements/
- Nokia Siemens Networks - http://www.nokiasiemensnetworks.com/about-us/responsible-disclosure
- Norada - http://norada.com/crm-software/security_response
- Owncloud - http://owncloud.org/about/security/hall-of-fame/
- Opera - https://bugs.opera.com/wizarddesktop/
- Oracle - http://:oracle.com/technetwork/topics/security/securityfixlifecycle-086982.html
- Puppet Labs - https://puppetlabs.com/security/acknowledgments/
- RedHat - https://access.redhat.com/knowledge/articles/66234
- Risk.io - https://www.risk.io/security
- Sellfy - https://sellfy.com/security/
- Spotify - https://www.spotify.com/us/about-us/contact/report-security-issues/
- Sprout Social - http://sproutsocial.com/responsible-disclosure-policy
- Tuenti - http://corporate.tuenti.com/en/dev/hall-of-fame
- Twilio - https://www.twilio.com/docs/security/disclosure
- Twitter - https://twitter.com/about/security
- WizeHive - http://www.wizehive.com/special_thanks.html
- Xmarks - https://buy.xmarks.com/security.php
- Zendesk - http://www.zendesk.com/company/responsible-disclosure-policy
- Zynga - http://company.zynga.com/security/whitehats
PRODUCT AND SERVICES (HALL OF FAME + SWAG) Reward: T-shirt
- Atlassian - https://confluence.atlassian.com/display/SUPPORT/How+to+Report+a+Security+Issue
- Dropbox - https://www.dropbox.com/special_thanks
- Engineyard - https://www.engineyard.com/legal/responsible-disclosure-policy
- Github - https://help.github.com/articles/responsible-disclosure-of-security-vulnerabilities
- ifixit - http://www.ifixit.com/Info/Responsible_Disclosure
- Paymill - https://www.paymill.com/en-gb/support-3/worth-knowing/security/
- Schuberg Philis - http://www.schubergphilis.com/newsroom/library/downloads-policies/responsible-disclosure-policy/
- Soundcloud - http://help.soundcloud.com/customer/portal/articles/439715-responsible-disclosure
- Yahoo - http://security.yahoo.com
PRODUCTS AND SERVICES (REWARD OFFERED)
- Access - https://www.accessnow.org/prize
- AT&T - http://developer.att.com/developer/apiDetailPage.jsp?passedItemId=10700235
- Avast! - http://www.avast.com/bug-bounty
- Barracuda - http://barracudalabs.com/?page_id=3456
- Chromium Project - http://www.chromium.org/Home/chromium-security/vulnerability-rewards-program
- Coinbase - https://coinbase.com/whitehat
- Cryptocat - https://crypto.cat/bughunt/
- Etsy - http://www.etsy.com/help/article/2463
- Facebook - http://www.facebook.com/whitehat/bounty/
- Gallery - http://codex.gallery2.org/Bounties
- Google - http://www.google.com/about/company/rewardprogram.html
- Hex-Rays - http://www.hex-rays.com/bugbounty.shtml
- IntegraXor (SCADA) - http://www.integraxor.com/blog/integraxor-hmi-scada-bug-bounty-program
- Kaneva - http://docs.kaneva.com/mediawiki/index.php/Bug_Bounty
- LaunchKey - https://launchkey.com/docs/whitehat
- ManageWP - https://managewp.com/white-hat-reward
- Marktplatts - http://statisch.marktplaats.nl/help/responsible_disclosure_policy_en.html
- Mega.co.nz - http://thenextweb.com/insider/2013/02/01/kim-dotcom-puts-up-13500-bounty-for-first-person-to-break-megas-security-system/
- Meraki - http://www.meraki.com/trust/#srp
- Microsoft - http://www.microsoft.com/security/msrc/report/bountyprograms.aspx
- Mozilla - http://www.mozilla.org/security/bug-bounty.html
- Paypal - https://www.paypal.com/us/webapps/mpp/security/reporting-security-issues
- PikaPay - https://www.pikapay.com/pikapay-security-policy/
- Piwik - http://piwik.org/security/
- Qmail - http://cr.yp.to/djbdns/guarantee.html
- Ripple - https://ripple.com/bug-bounty/
- Samsung - https://samsungtvbounty.com/
- Simple - https://www.simple.com/policies/website-security/
- Tarsnap - https://www.tarsnap.com/bugbounty.html
- Yandex - http://company.yandex.com/security/index.xml
Like it ? Share it.