Infosec Institute

Open Bug Bounty mentioned in the
Top 6 Bug Bounty programs of
2022 by the InfoSec Institute

The Hacker News

Open Bug Bounty named among the
Top 5 Bug Bounty programs of 2021
by The Hacker News

All Open Bug Bounty emails are sent only from openbugbounty.org domain being digitally signed. All others are fake. Learn more.
For security researchers
Report a Vulnerability
Submit, help fixing, get kudos.
For website owners
Start a Bug Bounty
Run your bounty program for free.
1,466,863 coordinated disclosures
1,111,313 fixed vulnerabilities
1,747 bug bounty programs, 3,466 websites
34,321 researchers, 1,538 honor badges

Top Security Researchers

All Time Last Month

This section is dedicated to cybersecurity professionals who are the leading Open Bug Bounty security researchers. By reporting security vulnerabilities via coordinated and responsible disclosure to website owners, they help making World Wide Web a safer place and reduce cybercrime against the website users.

TOP-50 Researchers

Security Researcher Helped Patch Recommendations Badges
89195
75788
45489
38837
25572
22043
21880
16394
15374
11769
10763
9775
9634
9039
7680
6865
4953
4690
4468
4385
4367
4259
4187
4085
4035
3955
3951
3855
3837
3598
3518
3504
3328
3138
3048
2983
2861
2847
2484
2468
2448
2444
2423
2418
2366
2262
2090
2073
2021
1945

TOP-50 VIP Researchers

Security Researcher Helped Patch Recommendations Badges
3704
2400
1585
1215
1064
1037
1007
964
878
855
813
666
661
611
605
572
561
553
551
520
520
468
453
440
432
423
417
414
397
395
387
376
368
347
346
344
307
305
285
275
272
270
263
260
250
246
245
241
240
230