bugbounty – Open Bug Bounty Blog

For Researchers

Report a Vulnerability Report and help remediate a vulnerability found on any website	Write a Blog Post Write a blog post to share your knowledge and get kudos
Browse Bug Bounty Programs Browse active bug bounty programs run by website owners	Ask a Question Ask questions and share your improvement ideas

How it Works

Download presentation and learn
how our platform works

PDF, 1MB

For Owners

Start a Bug Bounty Start your bug bounty program at no cost and leverage crowd-security testing	Ask a Question Ask questions or let us know how to make Open Bug Bounty even better
API Request National CERTs and law enforcement agencies may request our API

How it Works

Download presentation and learn
how our platform works

PDF, 1MB

Hall of Fame

Top Security Researchers They make Web a safer place by reporting and helping remediate vulnerabilities	Acknowledgements Website owners share their experience of collaboration with the researchers

How it Works

Download presentation and learn
how our platform works

PDF, 1MB

About

About the Project Read about Open Bug Bounty history, values and mission	Latest Reports Browse the most recent vulnerability submissions
Contact Us Get in touch

How it Works

Download presentation and learn
how our platform works

PDF, 1MB

Forum
Blog

A Story of IDOR To Account Takeover

Posted on September 14, 2020September 14, 2020 by pk_12397

Hello Guys ! I am Pramod Yadav a Security Researcher and a Bug Hunter. This Is My First Bug Bounty Writeup. We are Going to See A Story of IDOR and How Could I Have Taken Over Your Account Through It. Before Getting into Details Let’s See What is An IDOR. What is an IDOR?…

Happy bug hunting in 2020, let’s make Web secure with Open Bug Bounty!

Posted on December 31, 2019December 31, 2019 by Open Bug Bounty

Hitachi Incident Response Team (HIRT)

Posted on May 20, 2019 by fakessh

Hitachi HIRT xss reflected

Pwnie Express – Cross-site Scripting (XSS)

Posted on March 27, 2019March 27, 2019 by ismailtsdln

Everything about XSS is in this source!

Posted on February 23, 2019 by ismailtsdln

My name is Ismail Tasdelen. As a security researcher. In this article, I created a resource for you to get better information about xss. There are many xss bypass payloads in this resource, and there are a lot of technical sources. I hope that will be useful.

Adobe Israel Website XSS Vulnerability

Posted on February 15, 2019February 15, 2019 by ismailtsdln