For commercial Bug Bounty industry and affiliates

[x1admin]

We respectfully understand that for you bug bounty is first of all a business, a black-ink profit and loss statements.

We respectfully understand that your investors and management may be unhappy with your financial performance and results.

We respectfully understand that you may not like the ongoing success of our non-profit community, researchers and the value we deliver.

We respectfully understand that when OBB researchers get a $5,000 bounty for XSS you may regret not to impose a commission on it or invoice the website owner.

We even understand that you may dream to monopolize the brains of researchers to get arguably little-deserved commission for every single bug they find.

We also receive hints that some among you tempt to instigate others to spread incorrect information about OBB. We are grateful for this. Each newly-invented false or misleading statement helps us better explain what we do and how we do, continuously improving our platform and its benefits both for the website owners and researchers. By the way, we are especially amused when unschooled folks with a long public history of defacements, or similar, rant about legality of research.

We face similar obstacles as the Open Source Software community many years ago being heavily and often unfairly criticized by some proprietary software companies. We find this to be a great validation of our non-commercial efforts to make the Web a safer place for everyone's benefit.

We will continue developing open, ethical and fair platform to put in touch website owners and security researchers without necessity of paying exorbitant commissions or fees to any third-parties. Thank you for your help.

Respectfully yours,

OBB Team & Community