Researcher Product Documentation

CrowdStream is Bugcrowd's public activity feed and displays the activities for unresolved, resolved, or coordinated disclosed submissions depending on the configured level of visibility for a program....

Competing among the crowd is commonplace; whether it's who has gotten the most findings or who has provided the highest impact, researchers want to share their achievements and see how they stack up. ...

With program invitations, researchers were previously required to accept the invitation before they could understand the terms of the program. Going forward, we have decoupled the ability to become el...

Once a vulnerability is patched, program owners will often have the issue retested to help verify that the fix was successful. Researchers are uniquely positioned to complete this black-box retest to ...

At Bugcrowd, we're in the business of sourcing the best researchers for a program’s needs, taking into consideration the researcher's skills and trusted qualifications to ensure they can deliver. To e...

Security research requires explicit permission to begin testing, but even with that, the lack of clear legal scope can put hackers, companies and consumers at risk. Now with our safe harbor tracking i...

To ensure success in finding priority vulnerabilities, security researchers often leverage the learnings of others through write-ups, blogs, podcasts and more. At the same time, researchers are beginn...

Program onboarding is a key component to program success. We recently released a Crowdcontrol feature that streamlines credential management for easier researcher onboarding and workflow. Customers r...

When writing vulnerability reports and submissions, it is vital to be as clear and detailed as possible to help streamline triage, validation, and acceptance. The markdown fields allowed for rich text...

Hackers can now delete their connected Payoneer account within Payment Methods.