🎯 Bug Bounty Programs Collection

A structured collection of public bug bounty and vulnerability disclosure programs
across multiple platforms worldwide.

This repository is designed to help security researchers quickly navigate, discover, and track bug bounty programs from different providers in one centralized place.

---

📌 Overview

The Bug Bounty Programs Collection repository aggregates various platforms that host:

• 🐞 Bug Bounty Programs
• 🔍 Vulnerability Disclosure Programs (VDP)
• 💰 Responsible Disclosure Initiatives
• 🏢 Private & Public Security Programs

This project helps researchers:

• Discover new programs faster
• Organize reconnaissance targets
• Compare platforms
• Track opportunities across ecosystems

---

🌍 Supported Platforms

Below are major bug bounty and security disclosure platforms included in this repository:

🐞 Global Bug Bounty Platforms

• Bugcrowd
• HackerOne
• Intigriti
• YesWeHack
• Synack
• Cobalt
• Open Bug Bounty
• HackenProof
• Federacy
• Detectify Crowdsource

---

🏛 Tech Company Programs

• Google VRP
• Microsoft MSRC
• Apple Security Bounty
• Meta (Facebook) Bug Bounty
• GitHub Security Lab
• Shopify Bug Bounty
• PayPal Bug Bounty
• Netflix Bug Bounty
• Uber Bug Bounty
• Airbnb Bug Bounty

---

🏦 Financial & Crypto Platforms

• Binance Bug Bounty
• Coinbase Bug Bounty
• Kraken Security Program
• Crypto.com Bug Bounty
• Tether Security Program
• Blockchain.com Security
• Polygon Bug Bounty
• Ethereum Foundation
• Solana Security Program

---

🏛 Government & Public Sector

• US Department of Defense (Hack The Pentagon)
• UK Government Vulnerability Disclosure
• Singapore GovTech
• European Union Bug Bounty
• Various National CERT Programs

---

🌐 Independent & Corporate VDPs

• Company-hosted Responsible Disclosure pages
• ISO 29147-compliant VDPs
• Security.txt-based disclosures
• Self-hosted bounty portals

---

📂 Repository Structure

Example structure:

Bug-Bounty-Programs/
│
├── bugcrowd/
├── hackerone/
├── intigriti/
├── yeswehack/
├── synack/
├── crypto/
├── tech-companies/
├── government/
└── README.md

Each folder may contain:

• Program lists
• Engagement details
• Scope references
• Research notes
• Automation scripts (if applicable)

---

🚀 Purpose

This repository aims to:

• Centralize bug bounty intelligence
• Assist reconnaissance planning
• Improve researcher workflow
• Provide structured navigation across platforms

It is intended for:

• Ethical hackers
• Bug bounty hunters
• Security researchers
• Pentesters
• Red teamers

---

⚠️ Usage Notice

• Always read and follow each program’s rules.
• Only test targets that are explicitly marked as in-scope.
• Respect platform Terms of Service.
• Unauthorized testing is illegal.

---

🛡 Disclaimer

This repository is for educational and authorized security research purposes only.

The author does not encourage or support illegal activities.
Users are responsible for ensuring compliance with all applicable laws and program policies.

---

👤 Author

SecAnalysts
Security Research & Automation

---

☕ Support / Donation

If this repository helps your research, you may support my work:

BTC Address:

1sAXERLyPhg4Fg4rkhuRQfm9eek2NJo6V

Your contribution supports continued development and my child’s education. 🙏