List of Bug Bounty

 

Bug Bounty Programs represent a very good marketing tool for companies that run such programs as well for the bug hunters.Participating in such programs as a security professional, you’ll get continuous security training and it will strengthen your personal branding within the Digital and Information Security industry.

PRODUCT AND SERVICES (HALL OF FAME AND NO REWARD)

1. 37signals - https://37signals.com/security-response
2. Acquia - https://www.acquia.com/how-report-security-issue
3. Active Prospect - http://activeprospect.com/activeprospect-security/
4. Adobe - http://www.adobe.com/support/security/alertus.html
5. Android Free Apps - http://www.androidfreeapp.net/security-researcher-acknowledgments/
6. Apple - http://support.apple.com/kb/HT1318
7. Besnappy - http://besnappy.com/security
8. Blackberry - http://us.blackberry.com/business/topics/security/incident-response-team/collaborations.html
9. Braintree - https://www.braintreepayments.com/developers/disclosure
10. Card - https://www.card.com/responsible-disclosure-policy
11. cPaperless - http://www.cpaperless.com/securitystatement.aspx
12. Chargify - https://chargify.com/security/
13. eBay - http://pages.ebay.com/securitycenter/ResearchersAcknowledgement.html
14. EVE - http://community.eveonline.com/devblog.asp?a=blog&nbid=2384
15. Freelancer - http://www.freelancer.com/info/vulnerability-submission.php
16. Future Of Enforcement - http://futureofenforcement.com/?page_id=695
17. Gitlab - http://blog.gitlab.com/responsible-disclosure-policy/
18. Gliph - https://gli.ph/s/security.html
19. Harmony - http://get.harmonyapp.com/security/
20. lastpass - https://lastpass.com/support_security.php
21. Mahara - https://wiki.mahara.org/index.php/Contributors#Security_Researchers
22. MailChimp - http://mailchimp.com/about/security-response/
23. Microsoft - http://technet.microsoft.com/en-us/security/cc308589
24. Netflix - http://support.netflix.com/en/node/6657#gsc.tab=0
25. Nokia - http://www.nokia.com/global/security/acknowledgements/
26. Nokia Siemens Networks - http://www.nokiasiemensnetworks.com/about-us/responsible-disclosure
27. Norada - http://norada.com/crm-software/security_response
28. Owncloud - http://owncloud.org/about/security/hall-of-fame/
29. Opera - https://bugs.opera.com/wizarddesktop/
30. Oracle - http://:oracle.com/technetwork/topics/security/securityfixlifecycle-086982.html
31. Puppet Labs - https://puppetlabs.com/security/acknowledgments/
32. RedHat - https://access.redhat.com/knowledge/articles/66234
33. Risk.io - https://www.risk.io/security
34. Sellfy - https://sellfy.com/security/
35. Spotify - https://www.spotify.com/us/about-us/contact/report-security-issues/
36. Sprout Social - http://sproutsocial.com/responsible-disclosure-policy
37. Tuenti - http://corporate.tuenti.com/en/dev/hall-of-fame
38. Twilio - https://www.twilio.com/docs/security/disclosure
39. Twitter - https://twitter.com/about/security
40. WizeHive - http://www.wizehive.com/special_thanks.html
41. Xmarks - https://buy.xmarks.com/security.php
42. Zendesk - http://www.zendesk.com/company/responsible-disclosure-policy
43. Zynga - http://company.zynga.com/security/whitehats

PRODUCT AND SERVICES (HALL OF FAME + SWAG) Reward: T-shirt 

1. Atlassian - https://confluence.atlassian.com/display/SUPPORT/How+to+Report+a+Security+Issue
2. Dropbox - https://www.dropbox.com/special_thanks
3. Engineyard - https://www.engineyard.com/legal/responsible-disclosure-policy
4. Github - https://help.github.com/articles/responsible-disclosure-of-security-vulnerabilities
5. ifixit - http://www.ifixit.com/Info/Responsible_Disclosure
6. Paymill - https://www.paymill.com/en-gb/support-3/worth-knowing/security/
7. Schuberg Philis - http://www.schubergphilis.com/newsroom/library/downloads-policies/responsible-disclosure-policy/
8. Soundcloud - http://help.soundcloud.com/customer/portal/articles/439715-responsible-disclosure
9. Yahoo - http://security.yahoo.com

PRODUCTS AND SERVICES (REWARD OFFERED)

1. Access - https://www.accessnow.org/prize
2. AT&T - http://developer.att.com/developer/apiDetailPage.jsp?passedItemId=10700235
3. Avast! - http://www.avast.com/bug-bounty
4. Barracuda - http://barracudalabs.com/?page_id=3456
5. Chromium Project - http://www.chromium.org/Home/chromium-security/vulnerability-rewards-program
6. Coinbase - https://coinbase.com/whitehat
7. Cryptocat - https://crypto.cat/bughunt/
8. Etsy - http://www.etsy.com/help/article/2463
9. Facebook - http://www.facebook.com/whitehat/bounty/
10. Gallery - http://codex.gallery2.org/Bounties
11. Google - http://www.google.com/about/company/rewardprogram.html
12. Hex-Rays - http://www.hex-rays.com/bugbounty.shtml
13. IntegraXor (SCADA) - http://www.integraxor.com/blog/integraxor-hmi-scada-bug-bounty-program
14. Kaneva - http://docs.kaneva.com/mediawiki/index.php/Bug_Bounty
15. LaunchKey - https://launchkey.com/docs/whitehat
16. ManageWP - https://managewp.com/white-hat-reward
17. Marktplatts - http://statisch.marktplaats.nl/help/responsible_disclosure_policy_en.html
18. Mega.co.nz - http://thenextweb.com/insider/2013/02/01/kim-dotcom-puts-up-13500-bounty-for-first-person-to-break-megas-security-system/
19. Meraki - http://www.meraki.com/trust/#srp
20. Microsoft - http://www.microsoft.com/security/msrc/report/bountyprograms.aspx
21. Mozilla - http://www.mozilla.org/security/bug-bounty.html
22. Paypal - https://www.paypal.com/us/webapps/mpp/security/reporting-security-issues
23. PikaPay - https://www.pikapay.com/pikapay-security-policy/
24. Piwik - http://piwik.org/security/
25. Qmail - http://cr.yp.to/djbdns/guarantee.html
26. Ripple - https://ripple.com/bug-bounty/
27. Samsung - https://samsungtvbounty.com/
28. Simple - https://www.simple.com/policies/website-security/
29. Tarsnap - https://www.tarsnap.com/bugbounty.html
30. Yandex - http://company.yandex.com/security/index.xml

Like it ? Share it.