The SafeHats bug bounty program is an extension of your security setup. Designed for enterprises, the program taps into a vast pool of highly skilled and carefully vetted security researchers and ethical hackers to comprehensively test your application’s security. It also provides your customers with comprehensive protection.
Leverage the power of the crowd to discover critical vulnerabilities in your application, before they can be exploited
Key Features of Managed Bug Bounty Program
Flexible Programs
Run programs that suit your current security maturity level. We have designed a Walk-Run-Fly program concept for Basic enterprises, progressive and advanced enterprises respectively.
Focus on Critical Vulnerabilities
Testing for more sophisticated vulnerability scenarios. Researchers are incentivized to focus high severity and critical vulnerabilities.
The Tiger Team
A specialized in-house team with world renowned certifications, trusted by some of the most secured organizations around the world like Facebook, Google, Uber, etc.
Curated Security Researchers
Security researchers from diverse profile backgrounds, age, profession creating wide range of security vulnerability profiles.
Responsible Disclosure Policy
ReseaA comprehensive policy between the security researchers and clients bound by mutual trust, respect, and transparency.
Pay-per-Bug Model
Researchers are paid on Pay per Bug (PPB) Model. Pricing based on result rather than effort employed. We create a competitive environment where the researchers who reports the bug first gets the reward.
0
Cyber Attacks Per Year0
% Cyber Attacks Target Small Businesses0
New Malware Samples Detected Everyday0
Million Dollar Worth Ransomware Attack Losses Since 2015SafeHats Bug Bounty Scope
How does the SafeHats program work?
1. Onboarding
Register and tell us about the product you want tested, and you are good to go. We will help you through the entire process of defining scope, setting up bounty and guide you in launching a managed vulnerability disclosure program.
2. Testing
We deploy a pool of trusted researchers, based upon your requirements to detect vulnerabilities in your application. Our hackers go way beyond to detect vulnerabilities that scanner can’t find. Findings are reported in real time.
3. Report
All bugs are assessed, validated and classified according to criticality, severity by our internal triage team. A plan of action is also recommended to help you manage the issues reported.
4. Bug Fixing
Your internal development team can act upon the report and recommended plan of action to mitigate the discovered vulnerabilities.
5. Reward
Reward the hackers and keep them incentivized to carry on the good work and keep looking for more bugs.
6. Repeat
Testimonials
The fundamental idea of the platform (putting hackers and web site owners in the same place) is very good. Bugs are triaged and have the severity classified by the platform, which is very helpful.
__________
We found it very easy to use and the reports were very high quality. Helped us solve some critical problems with our website.
_______
SafeHats Bug Bounty Programs & Pricing (Pay As You Like)
Starter
$1000/month onwards
No. of Applications Upto 1 Web Application or Mobile Apps
Bug Triage Within 5 business days
Average Response Time Less than 48 Hrs
Enterprise
$5000/month onwards
No. of Applications Upto 10 Web Application or Mobile Apps
Bug Triage Within 2 business days
Average Response Time Less than 24 Hrs
Group
Custom
No. of Applications Upto 25 Web Application or Mobile Apps
Bug Triage Within 1 business days
Average Response Time Less than 12 Hrs
