Welcome to the researcher dashboard! This dashboard will be your homepage - here you can view stats such as your current Bugcrowd researcher ranking, and total points earned. More importantly, this page will display actionable performance metrics you can utilize to help understand the necessary performance adjustments needed to attain personal goals and achieve Bugcrowd accolades.
Attention:
The researcher dashboard is private - it may only be seen by a researcher once he or she has logged in. To share your Bugcrowd performance with others, set your researcher profile public using the profile visibility
toggle
Below is a breakdown of the dashboard:
User Details
User details are located at the top and include your researcher avatar photo, username, biography, ID verification, and background check verification
Bugcrowd Rank
Your Bugcrowd rank reflects your overall standing in the crowd. Your rank is determined by your total number of kudos points compared to other researchers. The more kudos points you have, the higher your rank.
Points Earned
Points Earned represents the total number of kudos points you have earned since joining the crowd. You are awarded points each time one of your submissions have been marked valid.
Private Bug Bounty Qualification Tips
This section of the dashboard, located on the right-hand side, and the learn more
link delivers insight and guidance to help you qualify for private program invites.
Performance Stats
Performance stats deliver charts and metrics to help you better understand your overall bug bounty performance on Bugcrowd.
Below is a brief snapshot of each metric displayed on the dashboard:
Set the dashboard timeline to view your performance stats for this month
, last 90 days
, year to date
, or all time
.
Tip: Private Program Access
Private bug bounty program invitation access are based on your program performance in the last 90 days
. To gain a better insight into your private program eligibility, set the dashboard timeline to last 90 days
.
Total Valid Vulnerabilities
This number represents the total number of vulnerabilities accepted as valid. These include submissions labeled as unresolved, resolved, duplicate, or won't fix.
Accuracy Rating
Your accuracy
rating measures your ability to consistently submit valid vulnerabilities. This metric is calculated by dividing your total number of valid vulnerabilities submitted over your total number of submissions. Valid submission include submissions labeled as unresolved, resolved, duplicate, or won't fix.
Average Technical Severity
Your average technical severity
represents your ability to submit high technical severity vulnerabilities. This stat is measured by looking at all of your valid vulnerabilities and adding up the total number by its technical severity, based on a scale from 1 to 4 (1 representing a P1, the most critical vulnerability, and 4 representing a P4, the lowest critical vulnerability) and dividing that number by total valid submissions. Ex: P1 = 2, P2 = 0, P3 = 3, and P4 = 4 ---> total = 1+1+3+3+3+4+4+4+4 = 28/9 = average technical severity
= 3.11
Reported Vulnerabilities - Volume
By selecting the volume
tab seen in the image below, you can view your total number of submission (valid and non-valid) over X period of time via a bar graph. Dependent on the selected timeframe, you may view your total number of submissions over the last month, the last 90 days, year to date, or all time.
Hover over the bar graph for a quick view of the exact number of vulnerabilities you've submitted at that specified time.
Reported Vulnerabilities - Technical Severity
By selecting the severity
tab seen in the image below, you can view your total number of valid submission over X period of time via a bar graph. The color coordinated bar graph represents the volume of submissions categorized by its technical severity. Dependent on the selected timeframe, you may view your total number of valid submissions over the last month, the last 90 days, year to date, or all time.
Hover over the bar graph for a quick view of your valid vulnerability submission breakdown by severity at that specified time.
Technical Severity Breakdown
The technical severity breakdown
provides a look at your total number of valid submission by technical severity. Use this graph to easily identify your most commonly submitted vulnerability severity.
Hover over the bar graph for a quick view of the exact number of valid vulnerabilities you've submitted categorized by a particular severity.
Submission Type
Understand your submission tendencies by tracking the volume of submissions based on the types of vulnerabilities you've submitted and the types of targets you've submitted on.
Vulnerability Type
This chart tracks the volume of submissions based on our VRT (Vulnerability Rating Taxonomy).
Target Type Breakdown
This chart tracks the volume of submissions based on the target type. (IoT, Website, API, iOS, Android, Hardware, Other, Not Categorized)
More Info
For detailed information on how your stats are calculated, Click Here.
Researcher Profile Visibility
The researcher dashboard is for personal use and may only be seen by you, once you've logged into the Crowdcontrol platform. You may also share your Bugcrowd performance with the rest of the world by setting your researcher profile public. This can be done in the upper right-hand corner of your researcher dashboard by sliding the profile visibility
toggle to public
.
Learn More: Researcher Profile
To learn more about your researcher profile and how to set this profile private, click here.