Kenna Security
A Hosted Vulnerability Intelligence Platform
$50 – $1,500 per vulnerability
Program stats
53 vulnerabilities rewarded
11 days average response time
$308.33 average payout (last 12 weeks)
Latest hall of famers
Recently joined this program
Disclosure
Please note: This program does not allow disclosure. You may not release information about vulnerabilities found in this program to the public.
Researcher Sign-Up
Sign up at https://www.kennasecurity.com/signup?bugcrowd
DO NOT USE THE KENNA SIGNUP PAGE WITHOUT ?bugcrowd IN THE URL
Targets
-
Any host verified to be owned by Kenna (domains/IP space/etc.) -
https://[your-subdomain].kennasecurity.com
Out of scope
-
Any Kenna Security customer subdomain not created by you
Any testing/submissions against Kenna Security customer subdomains is strictly prohibited, not eligible for reward.
Rewards
| Target | Reward Range |
|---|---|
| Kenna Security Application | $50-$1,500 |
| All Other Targets | $50-$750 |
This program adheres to the Bugcrowd Vulnerability Rating Taxonomy.
Focus Areas
The highest priority target for this bounty is the Kenna Security application.
Out of Scope
Vulnerabilities in third party systems will be not be eligible for a reward.
Rules
This program follows Bugcrowd’s standard disclosure terms.
This program does not offer financial or point-based rewards for Informational (P5) findings. Learn more about Bugcrowd’s VRT.