Bug Bounty program

The Program

Crowdfense budget for its first public Bug Bounty Program, launched April 2018, is $10 million USD.

Payouts for full-chain, previously unreported, exclusive capabilities range from $500,000 USD to $3 million USD per successful submission. Partial chains will be evaluated on a case-by-case basis and priced proportionally. 

Within this program, Crowdfense evaluates only fully functional, top-quality 0-day exploits affecting the following platforms and products:

At any time Researchers can also submit their original work about other products' working vulnerabilities, which will be evaluated case-by-case.

Please be aware that from time to time we will also propose private Bug Bounty programs to selected Researchers through our upcoming Vulnerability Research Platform, which will be launched later this year.

Submission Process

Challenges

The first Researcher to submit indisputable proof of a fully working chain within the scope of our public Bug Bounty program will receive a 10% bonus on his/her payout (if Crowdfense decides to buy). For a working partial chain, the bonus will be 5%, calculated on the agreed payout.

Other Contests

From time to time, Crowdfense may propose private Challenges to selected Researchers through the upcoming Vulnerability Research Platform, which will be launched later this year.

Submit Your Researches

While our Vulnerability Research Platform is being readied, 
to submit your findings please

CONTACT US