gaspersic/freeCodeCamp
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Updated to clarify and add list of companies (#24220)

Browse Source 
* Updated to clarify and add list of companies

Changed line 7 to read reward instead of money because not all companies offer monetary rewards. Added a section on notable companies and a link to a site that compiles a more extensive list of companies.

* Update index.md
This commit is contained in:
yaganub
2018-11-26 15:09:04 -05:00
committed by Jonathan Grah
parent 13523c5cfa
commit 6a443a398d
1 changed files with 16 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
guide/english/security/bug-bounties/index.md
View File

@ -4,7 +4,7 @@ title: Bug Bounties
## Bug Bounties
Bug bounties are programs that are set up by companies to encourage people to check their products for vulnerabilities. In return these companies offer cash prizes for the discovered vulnerabilities.
Bug bounties are programs that are set up by companies to encourage people to check their products for vulnerabilities. In return these companies offer rewards for reporting the discovered vulnerabilities.
### Benefits to bounty hunters
@ -17,3 +17,18 @@ The companies that sponsor these programs gain several benefits:
- Many eyes on their product are more likely to find more bugs than the typical QA team
- Only have to pay for results, not for the time spent trying to find bugs
- Encourages people who find vulnerabilties to turn them over to the company and not to the black market.
### Notable companies and organizations that offer bug bounties
- Cisco
- Facebook
- Github
- Google
- Instagram
- Mastercard
- Microsoft
- Paypal
- Twitter
- Uber
A more comprehensive list can be found at the Bugcrowd's Bug Bounty List - https://www.bugcrowd.com/bug-bounty-list/