the Crowd

The most diverse and capable crowd of security researchers

Top Security Talent

We invest deeply in our researcher community, cultivating a diverse set of skill-sets and uniquely creative professionals.

Justin Kennedy

Justin Kennedy

shieldcheck_icon Verified

"I am both a principal security consultant that leads a security team at a global consulting organization as well as a Bugcrowd researcher. Why? Because security testing is my passion.”

Cristiano Maruti

Cristiano Maruti

shieldcheck_icon Verified

“In my spare time I kill bugs while working with Bugcrowd, a smart and growing community of top-notch security masters!"

Nitin Goplani

Nitin Goplani

shieldcheck_icon Verified

"Being a security researcher, it's important for me to keep my skills sharp and be on the lookout for opportunities to test and hone my skills. Bugcrowd helps me do that!”

What Can The Crowd Test?

Our researchers are located all over the world and specialize in...

  • radiotower_icon

    Network Appliances

  • arrowdown_icon

    iOT & Firmware

  • images/arrowdown_icon.png

    Web Apps

  • mobile_icon

    Mobile Apps

  • doublecog_icon


  • network_icon

    Network Infrastructure


Talented and Trusted

We make sure you get the right mix and type of researcher. If you are launching a private program, we build a group of researchers by assessing four key attributes of their Bugcrowd experience.


How often a researcher’s submissions is accepted as “valid” by a program owner. Researchers must maintain an acceptance rate of 50% or higher.


Active researchers that are ready to work on your program. Researchers must have submitted in the last 90 days to qualify as active.


Critical submissions that you care about. Measured between 1.0 (critical) and 5.0 (low), researchers must maintain a priority rate better than 3.99.


A track record of staying inside the scope of a bounty brief, following terms, and honoring all non-disclosure requirements.