Tuesday, 2 July 2013

LIST OF BUG BOUNTY PROGRAMS/ HALL OF FAME PAYING SITES

LIST OF BUG BOUNTY PROGRAMS

Bug Bounty Program a well known topic is on the heat these days, known companies like: google, Facebook, Mozilla are paying for finding a vulnerabilities on their web servers, products, services or some associated applications. Here is a list for all the Security Researchers and Bug Hunters to target all the best :)

Bug Bounty Websites for Web Application Vulnerability

Mozilla
security@mozilla.org 
http://www.mozilla.org/security
http://www.mozilla.org/projects/security/security-bugs-policy.html
http://www.mozilla.org/security/announce

Google
security@google.com 
https://www.google.com/appserve/security-bugs/new?rl=xkp7zert49a5q6owod28bhr2

Facebook
http://www.facebook.com/whitehat/bounty

Paypal
sitesecurity@paypal.com 
https://cms.paypal.com/cgi-bin/marketingweb?cmd=_render-content&content_ID=security/reporting_security_issues

Etsy
http://www.etsy.com

Wordpress
http://www.whitefirdesign.com/about/wordpress-security-bug-bounty-program.html

Commonsware
http://commonsware.com/bounty.html

CCBill
http://www.ccbill.com/developers/security/vulnerability-reward-program.php
http://www.ccbill.com/developers/security/rewards.php

Vark
http://www.vark.com

Windthorstisd
http://www.windthorstisd.net/BugReport.cfm


Bug Bounty Websites for Products Vulnerability 

Mozilla
http://www.mozilla.org/security
http://www.mozilla.org/security/known-vulnerabilities/firefox.html

Google Chrome
http://www.chromium.org/Home/chromium-security/vulnerability-rewards-program

Zero Day Initiative
http://www.zerodayinitiative.com

Barracuda
bugbounty@barracuda.com
http://www.barracudalabs.com/bugbounty
http://www.barracudalabs.com/bugbounty/halloffame.html

Artifex Software
http://www.ghostscript.com/Bug_bounty_program.html

Hex Rays
http://www.hex-rays.com/bugbounty.shtml

Ardour
http://ardour.org/bugbounty

Piwik
http://piwik.org/security


Hall of Fame & Responsible Disclosure Websites(No Bounties)

Microsoft
http://technet.microsoft.com/en-us/security/ff852094.aspx
http://technet.microsoft.com/en-us/security/cc308589
http://technet.microsoft.com/en-us/security/cc308575
http://technet.microsoft.com/en-us/security/cc261624
http://www.microsoft.com/security/msrc/default.aspx

Apple
product-security@apple.com
http://support.apple.com/kb/HT1318
https://ssl.apple.com/support/security/

Adobe
http://www.adobe.com/support/security/bulletins/securityacknowledgments.html
http://www.adobe.com/support/security/alertus.html

IBM
http://www-03.ibm.com/security/secure-engineering/report.html

Twitter
https://twitter.com/about/security
http://support.twitter.com/groups/33-report-abuse-or-policy-violations/topics/122-reporting-violations/articles/477159-how-to-report-xss-api-and-other-security-vulnerabilities#
https://support.twitter.com/forms

Dropbox
security@dropbox.com
https://www.dropbox.com/security
https://www.dropbox.com/special_thanks

Cisco
http://tools.cisco.com/security/center/home.x#~alerts

Moodle
http://moodle.org/security

Drupal
http://drupal.org/security-team

Oracle
http://www.oracle.com/us/support/assurance/reporting/index.html

Symantec
http://www.symantec.com/security

Ebay
http://pages.ebay.com/securitycenter/Researchers.html

Twilio
http://www.twilio.com/blog/2012/03/reporting-security-vulnerabilities.html

37 Signals
http://37signals.com/security-response

Salesforce
http://www.salesforce.com/company/privacy/disclosure.jsp

Reddit
http://code.reddit.com/wiki/help/whitehat

Github
http://help.github.com/responsible-disclosure/

Ifixit
http://www.ifixit.com/Info/responsible_disclosure

Constant Contact
http://www.constantcontact.com/about-constant-contact/security/report-vulnerability.jsp

Zeggio
http://www.zeggio.com

Simplify
http://simplify-llc.com/simplify-security.html

Team Unify
http://www.teamunify.com/__corp__/security.php

Skoodat
http://www.skoodat.com/Security

Relaso
http://relaso.com/disclosure

Moduscsr
http://www.moduscsr.com/security_statement.php

Cloudnetz
http://cloudnetz.com/Legal/vulnerability-testing-policy.html

Emptrust
http://www.emptrust.com/Security.aspx

Apriva
http://www.apriva.com/security

Amazon
http://aws.amazon.com/security/vulnerability-reporting

SqaureUp
https://squareup.com/security/levels

G-Sec
http://www.g-sec.lu/responsible.disclosure.policy.html

Xen
http://www.xen.org/projects/security_vulnerability_process.html

Engine Yard
http://www.engineyard.com/legal/responsible-disclosure-policy

Lastpass
https://lastpass.com/support_security.php

RedHat
https://access.redhat.com/knowledge/articles/66234

Acquia
https://www.acquia.com/how-report-security-issue

Mahara
security@mahara.org 
https://wiki.mahara.org/index.php/Security 


Zynga
security@zynga.com
http://company.zynga.com/security/whitehats

Risk.io
https://www.risk.io/security

Opera 
http://www.opera.com/security/policy

Owncloud 
http://owncloud.org/security/policy
http://owncloud.org/security/hall-of-fame

18 comments:

  1. Woah! I'm reallƴ digging tɦe template/theme of this blog.

    It's simple,yet effective. A lot of times it's difficult tto get that "perfect balance" between user friendliness
    annd ѵisual appearance. I must say that you've dokne а great job with thіs.
    Also,the blog loads extremely fast ffor me on Opera. Superb
    Blog!

    Check out my site ... where can i buy real active instagram followers

    ReplyDelete
  2. Having read this I believed it was very informative.
    I appreciate you finding the time and effort to put
    this content together. I once again find myself personally
    spending a significant amount of time both reading and posting comments.

    But so what, it was still worth it!

    Also visit my web page :: Cheap Louis Vuitton Speedy

    ReplyDelete
  3. I am sosatisfy about it. That's where BradyGames comes in, the Signature Series and Limited Edition guides provide quite a few hints to keep at your fingertips.
    :) If you also came here because there is a multiplayer strategy guide also then guess what.


    Also visit my webpage ... diablo 3 game guide chest armor

    ReplyDelete
  4. It's perfect time to make some plans for the future and it
    is time to be happy. I've read this post and
    if I could I want to suggest you some interesting things or
    advice. Maybe you could write next articles referring to this article.
    I want to read more things about it!

    My web-site: cenaless

    ReplyDelete
  5. I for all time emailed this webpage post page to
    all my friends, as if like to read it afterward my contacts will too.


    Look into my page :: diatomaceous earth 2.5 lb.
    gal. jug - -

    ReplyDelete
  6. Hi, i think that i saw you visited my website so i came to “return the favor”.I'm trying to find things
    to improve my site!I suppose its ok to use a few of your ideas!!


    My blog post: plumbers El Mirage

    ReplyDelete
  7. I read this post fully on the topic of the difference of
    latest and previous technologies, it's awesome article.


    Review my web-site: louis vuitton purses (khursusbisnisonline.blogspot.co.nz)

    ReplyDelete
  8. I think that is one of the such a lot significant info for me.
    And i am satisfied studying your article. But should observation on few normal issues, The website style is great, the
    articles is really excellent : D. Just right job,
    cheers

    My website - Louis Vuitton Online

    ReplyDelete
  9. I've been browsing online more than 2 hours today, yet
    I never found any interesting article like yours.
    It's pretty worth enough for me. In my opinion, if all
    website owners and bloggers made good content as you did, the internet
    will be a lot more useful than ever before.

    Also visit my site Asian Massage Kensington (http://Www.nicaraguaeduca.edu.ni/)

    ReplyDelete
  10. Someone necessarily help to make critically posts I'd state.
    That is the first time I frequented your website page and so
    far? I surprised with the research you made to create this particular submit incredible.
    Excellent process!

    My website website design Boise Idaho

    ReplyDelete
  11. It is perfect time to make some plans for the
    future and it is time to be happy. I have read this post and if I could I wish to suggest
    you some interesting things or tips. Perhaps you can write next articles referring to this article.
    I wish to read more things about it!

    Feel free to surf to my website ... Best Hairbrush - Decision For Healthier - Shinier Hair

    ReplyDelete
  12. cheap rolex replica watches for sale
    Its like you read my thoughts! You appear to grasp so
    much approximately this, like you wrote the guide in it or something.
    I feel that you just could do with some % to force the
    message house a bit, however instead of that, that is
    magnificent blog. A fantastic read. I will definitely be back.

    ReplyDelete
  13. My brother recommended I would possibly like this website.
    He was once totally right. This publish actually made my day.
    You cann't consider simply how much time I had spent for this info!

    Thanks!

    Here is my site: click here - -

    ReplyDelete
  14. Hi there it's me, I am also visiting this web page on a regular basis, this website is truly good and the users are
    in fact sharing good thoughts.

    Here is my weblog ... Rock hard Male Enhancement Review

    ReplyDelete