Bug Bounty program

2019 Acquisition Program

Last year’s 10M USD bug bounty program was very well received by researchers, together with our unique "Vulnerability Research Hub" (VRH) online platform.

We also offered free high-level technical training sessions to hundreds of vulnerability researchers around the world, as a part of our commitment to support the research Community.

In 2019 we are offering a larger 15M USD acquisition program, extending its scope to include other important areas of research, inclusive of Networking Devices, WiFi/Baseband and Messengers.

Payouts for full-chain, previously unreported, exclusive capabilities range from $100,000 USD to $3 million USD per successful submission. Partial chains will be evaluated on a case-by-case basis and priced proportionally.

Within this program, Crowdfense evaluates only fully functional, top-quality 0-day exploits affecting the following platforms and products:

Submission Process

Challenges

The first Researcher to submit indisputable proof of a fully working chain within the scope of our public Bug Bounty program will receive a 10% bonus on his/her payout (if Crowdfense decides to buy). For a working partial chain, the bonus will be 5%, calculated on the agreed payout.

Other Contests

Please be aware that from time to time we will also propose private bounties to selected Researchers through our Vulnerability Research Hub: be sure not to miss them!

Submit Your Research

To join our Vulnerability Research Hub, please signup here.