bugcrowd
@Bugcrowd
Followers
191K
Following
19K
Media
9K
Statuses
26K
The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™
San Francisco, CA
Joined September 2012
Remember: Context is EVERYTHING. Always evaluate based on how many unique code fixes are required to truly remediate the issue.
0
0
0
🚨 Principle 3: Many ≠ Systemic Scenario Example: CSRF Findings on Multiple Pages The Test: A researcher finds 50 CSRF findings because the application lacks any anti-CSRF token. The Distinction: Is the issue isolated (missing token in 5 places where it should have been
1
0
0
Crypto Cyber Monday Deals! With multiple liquidation cascades behind us, most projects are trading at a massive discount. Since everything is on sale, here are the coins our intern thinks are a good deal right now. Do you Dare Buy the Blood? 1/5 👇
2
2
4
🤝 Principle 2: Similar ≠ Same Scenario Example: Reflected XSS with Common Parameters The Challenge: A researcher finds 15 Reflected XSS issues, but they all appear in one of three common parameters (e.g., page=, id=, utm=). The Evaluation: If the same underlying function
1
0
1
🔑 Principle 1: Touch the Code, Pay the Bug Scenario Example: Multiple SQLi Vulnerabilities The Mistake: Marking 10 unique SQLi findings across different resources as a single finding just because they are the same vulnerability class. The Reality: If fixing one SQLi doesn't
1
0
0
A duplicate bug bounty report is for an issue already known or identified. But deciding if a finding is truly a duplicate requires nuance! Getting it wrong can unfairly impact researchers. Here are 3 core principles and common scenarios to guide your evaluation. 👇
1
0
1
Do you use any Al apps that turn vague goals into actionable plans? I’ve got a problem I keep running into: Whenever I set a goal, I often don’t know where to start, what steps to take, or even how long it might realistically take to achieve it. I’m curious - are there any AI
reifai.com
Reifai helps you set clear goals and follow a step-by-step plan to reach them. No fluff, no hacks—just structure, focus, and progress that sticks.
0
1
2
Happy Cyber Monday! The day we all pretend we needed 14 things we absolutely didn’t—but hey, they were on sale. Just remember: while we’re hunting deals, scammers are hunting us. They follow the money, and this season it’s a lot: 💰 On track to hit $1.25 trillion in global
0
0
3
"Teach smarter: listen to your students first." -Craig
17
53
4K
#Bugcrowd’s proud to have played a part in the @owasp Top 10: 2025—powered with a little help from the Crowd 👋⚡️ 🔗 https://t.co/oIiK43T77z
1
3
22
This Cyber Monday, don't let urgency cloud your judgment. Pause, check, and secure your spend.
0
0
0
4️⃣ The Payment Trap The checkout page demands payment via gift card, crypto, or wire transfer bypassing secure credit card gateways. ✅Action: ABANDON SHIP!
1
1
0