I’ve launched a centralized Bug Bounty Platforms Directory to help security researchers quickly find and access major bug bounty and vulnerability disclosure platforms in one place.
Live link: https://saideresearch.github.io/bugbountyplatformsdirectory/
This directory brings together:
- Major global platforms (HackerOne, Bugcrowd, Intigriti, YesWeHack, Synack, Cobalt)
- Web3 and smart contract bounty platforms (Immunefi, Code4rena, Sherlock, Hats Finance, Cantina)
- Company-run programs (Google VRP, Microsoft MSRC, Apple Security Bounty, Meta, Shopify, GitLab, PayPal, and more)
- Regional and niche platforms
The interface is simple, fast, and searchable, allowing researchers to quickly find platforms without relying on scattered bookmarks or outdated lists.
This project is intended for bug bounty hunters, security researchers, students, and anyone exploring vulnerability disclosure programs.
Feedback and contributions are welcome.