World’s Greatest Bug Bounty Projects:
Note that each program has various guidelines for qualifications
and prizes. A few deal prizes and acknowledgment for programming-based issues,
and some for equipment. In this way, make a point to check the qualification
standards, qualifying report rules, and the kind of weaknesses qualified for
the award.
1. Apple Security Bounty Program
Apple Security Bounty is one of the greatest stages for
moral programmers. It presents compensation of $1,000,000 (1,000,000 bucks)
for different security issues on iCloud and its cell phones.
Restricted to the prize award, yet engaging with Apple while
having a fruitful report ought to give you a great public acknowledgment for your
work.
Apple Bug Bounty Link: https://support.apple.com/en-in/HT201220
2. Meta Bug Bounty Program
The award cash can go up to $45,000. According to the bug's
seriousness, the award cash can be significantly more (or much less).
Meta posts the name of all the security scientists freely to
say thanks to them. You can track down credits to scientists beginning around
2011 and earlier.
Likewise, they additionally offer a devotion program that
assists you with increasing your prizes (up to 20%) and procuring supported
travel/outings to programmer occasions by Meta.
Meta Bug Bounty Link: https://www.facebook.com/whitehat/
3. Google Bug Bounty Program
Bug Trackers bounty program allows you to report issues
across various spaces/administrations by Google (YouTube, Blogger, and so on.)
The prizes can go up to $30,000 and something else for
unique reports.
They likewise highlight a learning stage where you can take
motivations/focuses from existing models and advance as you go.
Google Bug Bounty Link: https://www.google.com/about/appsecurity/reward-program/
4. Microsoft Bug Bounty Program
Microsoft bug bounty program gives sufficient chances to
contribute and get perceived for your work.
The prizes can go up to $1M or more according to the
seriousness and the kind of report.
Microsoft Bug Bounty Link: https://technet.microsoft.com/en-us/library/dn425036.aspx
5. Twitter Bug Bounty Program
Not at all like others, Twitter uses an outsider bug bounty
stage to allow scientists to join. The base bounty begins at $280 and can go up
to $20,000.
It likewise remembers a lobby of distinction for the
HackerOne stage to thank the qualified specialists.
Twitter Bug Bounty Link: https://help.twitter.com/en/rules-and-policies/reporting-security-vulnerabilities
6. Tesla
Tesla's bug bounty program can be found on Bugcrowd, one
more outsider bug bounty stage.
The prizes can run up to $15,000 per weakness according to
the qualification standards.
Tesla Bug Bounty Link: https://www.tesla.com/en_eu/legal/security
7. Intel
Intel's bounty program essentially focuses on the
organization's equipment, firmware, and programming.
Constraints: It does exclude late acquisitions, the
organization's web foundation, outsider items, or anything connecting with
McAfee.
Least Payout: Intel offers a base measure of $500 for
tracking down bugs in their framework.
Greatest Payout: The Organization pays $30,000 most extremely for distinguishing basic bugs.
Intel Bug Bounty Link: https://www.intel.com/content/www/us/en/security-center/default.html
8. Cisco
Cisco supports people or associations that are encountering
an item security issue to report them to the organization.
Least Payout: Cisco's base payout sum is $100.
Most extreme Payout: Organization will give the greatest $2,500
to track down serious weaknesses.
Cisco Bug Bounty Link: https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html
9. Quora
Quora offers Bug Bounty program to all clients and
specialists to find and report security weaknesses.
Least Payout: Quora will pay least $100 for tracking down
weaknesses on their site.
Most extreme Payout: Greatest payout presented by this site
is $7000.
Quora Bug Bounty Link: https://hackerone.com/quora?type=team
10. Paypal
Installment passage administration Paypal additionally
offers bug bounty programs for security analysts.
Restrictions:
Weaknesses reliant upon social designing strategies, Host
Header
Forswearing of administration (DOS), Client characterized
payload, Content mocking without implanted joins/HTM, and Weaknesses that require a jailbroken cell phone, and so forth.
Least Payout: Paypal can pay at least $50 for tracking down
security weaknesses in their framework.
Most extreme Payout: Greatest payout sum given by Paypal is
$10000
Paypal Bug Bounty Link: https://hackerone.com/paypal?type=team
11. GitHub
Restriction:
The security specialist will get that bounty provided that
they regard clients' information and take advantage of no issue to create an
assault that could hurt the uprightness of GitHub's administrations or data.
Least Payout: Github pays a base measure of $200 for
tracking down bugs.
Greatest Payout: Github can pay $10000 for tracking down
basic bugs
GitHub Bug Bounty Link: https://bounty.github.com/
12. PHP
PHP permits moral programmers to track down a bug in their
site.
Restrictions: You want to check the rundown of previously
tracking down bugs. In the event that you not adhere to this guidance your bug
isn't thought of.
Least Payout: Least Payout sum is $500.
Greatest Payout: Most extreme $1500 is given by PHP for
looking through significant bugs.
PHP Bug Bounty Link: https://bugs.php.net/
13. Starbucks
Starbucks runs a bug Bounty program to safeguard its clients. They urge to track down malignant action in their organizations, web, and versatile applications strategies.
Least Payout: The base sum paid by Starbucks is $100.
Greatest Payout: The most extreme sum goes up to $4000.
Starbucks Bug Bounty Link: https://www.starbucks.com/whitehat
14. LinkedIn Bug Bounty Program
LinkedIn invites Individual scientists who contribute
their ability and time to track down bugs.
The organization will compensate you, however, neither the least
nor greatest sum is a fix for this reason.
LinkedIn Bug Bounty Link: https://engineering.linkedin.com/blog/2015/06/private-bug-bounty-program
15. Paytm
Paytm welcomes autonomous security gatherings or individual
scientists to concentrate on it across all stages.
Impediments:
• Reports that express that product is obsolete/helpless without a 'Proof of Idea.'
• XSS issues that influence just obsolete programs.
• Stack follows that uncover data.
• Any extortion issues
Least Payout: The Organization will pay at least $15 for
tracking down bugs.
Greatest Payout: This organization doesn't fix as far as
possible.
Paytm Bug Bounty Link: https://bugbounty.paytm.com/
16. WordPress
WordPress likewise invites security specialists to report
about the bugs that they have found.
Least Payout: WordPress Pays $150 least for detailing bugs
on their site.
Greatest Payout: The Organization doesn't fix a most extreme
breaking point to pay as bounty.
Wordpress Bug Bounty Link: https://make.wordpress.org/core/handbook/testing/reporting-bugs/
17. Hackerone
HackerOne is one of the greatest weakness coordination and
bug bounty stage. It assists organizations with safeguarding their purchaser
information by working with the worldwide exploration local area for finding
most important security issues. Many realized organizations like Hurray,
Shopify, PHP, Google, Snapchat, and Wink are taking the help of this site to
give a prize to security scientists and moral programmers.
Hackerone Bug Bounty Link: https://hackerone.com/bug-bounty-programs
18. Bugcrowd
A strong stage interfacing the worldwide security scientist
local area to the security market. This webpage plans to give right blend and
kind of scientist fit by the particular site to their overall clients. The
programmers simply have to choose their reports on this site, and in the event
that they can distinguish right bugs, the particular organization will pay the
sum to that individual.
Bugcrowd Bug Bounty Link: https://www.bugcrowd.com/bug-bounty-list/
