IssueHunt

Overview

IssueHunt is a bug bounty platform that facilitates collaboration between companies and security researchers. It allows companies to list their projects and specify the scope of vulnerabilities they are interested in. Researchers can then review these programs, identify and report vulnerabilities, and receive rewards for their efforts. The platform supports public, application-based, and invite-only programs, offering flexibility in managing bug bounty participation. IssueHunt provides a structured environment for vulnerability disclosure and remediation, enhancing the security posture of participating companies while providing financial incentives for researchers. Payouts are facilitated via bank transfer or PayPal. Its architecture streamlines the bug reporting process, making it easier for companies to manage and reward bug reports.

Common tasks

Vulnerability Discovery Bug Reporting Reward Management

FAQ

View all

What kind of companies will list the program and is English available?

Mainly our target is Japanese companies. Program page is English and you can send and receive messages with English too, don't worry!

Who can participate in the bug bounty program?

We have three kinds of programs, Public, Application and Invite Only. Everyone can participate in the public programs. Only hunters accepted by the company can participate in Application programs. Only hunters invited by the company can participate in Invite Only programs.

What vulnerabilities I can report?

The company will introduce the scope, guidelines and other necessary information on their program page. You can research vulnerabilities based on that.

All reports can be rewarded?

No. You can see the in scope and out of scope in the program guideline. Reports will not be rewarded if your report is out of scope, duplicate and so on.

FAQ+