Reviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
55 reviews
from
External reviews are not included in the AWS star rating for the product.
Enhances Security Testing and Rewards Engagement
What do you like best about the product?
I use Bugcrowd mainly because it provides an excellent platform for finding and reporting security vulnerabilities, which significantly enhances my skills as an ethical hacker while ensuring the legality of my actions. I enjoy being part of a vibrant community that allows me to connect with other ethical hackers, learn new techniques, and receive constructive feedback on my work. The platform's communication handling between researchers and companies is impressive, maintaining an organized environment with clear submission timelines and reliable payouts. I appreciate the transparency in rules and scopes for each program, so I am always aware of what I can test. The platform makes the entire process convenient, from submitting bugs to tracking rewards, allowing me to focus on hacking and skill development. I also love the variety of available programs covering web apps, APIs, mobile apps, and IoT devices, which keeps the work interesting. The additional motivation from rewards encourages me to dig deeper, while the sense of community and the feedback I receive help me refine my skills. Finally, the initial setup process was super easy, seamlessly fitting into my existing workflow with other security testing tools.
What do you dislike about the product?
I find the response time from some companies for triaging and reporting can be slow, especially in private programs. It often leaves me feeling in the dark while waiting for updates. Additionally, while Bugcrowd offers variety, not all programs are equally rewarding, and the payout rates can vary significantly. I have also encountered cases where bugs are marked as duplicates despite differences in details, leading to a need for more transparency and consistency.
What problems is the product solving and how is that benefiting you?
I use Bugcrowd to find and report security vulnerabilities, providing a platform for legal, ethical hacking with a rewarding system. It enhances my skills through feedback and collaboration, with diverse programs and clear guidelines, making the bug hunting process smoother and more professional.
BugCrowd makes vulnerabilities management easy
What do you like best about the product?
I appreciate Bugcrowd because it provides a reliable platform for conducting security testing without requiring an in-house team of hackers. I value Bugcrowd's strong security testing community, which facilitates thorough examination of applications to uncover bugs and vulnerabilities before they become significant issues. The platform's ease of management is another aspect I find appealing. It makes communication smooth between researchers and my team, as Bugcrowd handles reports, triage, and payouts without causing any confusion. I also enjoy that the initial setup was straightforward and did not consume much of my time.
What do you dislike about the product?
NA
What problems is the product solving and how is that benefiting you?
I use Bugcrowd to test application security, find vulnerabilities early, and manage communications with researchers efficiently without an in-house team.
Empowering Platform for QA Testers with Efficient Triage Workflow
What do you like best about the product?
It helps me connects with real-world security challenges being a QA tester. The platform’s triage workflow is structured, transparent, and efficient, which helps testers focus on finding impactful vulnerabilities instead of chasing admin overhead.
What do you dislike about the product?
The resources to become a security researcher is not structured. It becomes very difficult for beginner to learn & grow.
What problems is the product solving and how is that benefiting you?
Most companies don’t have in-house expertise across all attack surfaces. It helps to solve this problem.
I get to learn from diverse programs—web, mobile, API, cloud, Web3—giving me multi-domain security experience.
I get to learn from diverse programs—web, mobile, API, cloud, Web3—giving me multi-domain security experience.
Valuable Security Research Platform with Room for Improvement
What do you like best about the product?
I find Bugcrowd exceptionally helpful as it provides well-structured and legitimate security research opportunities, connecting me with programs that truly value detailed vulnerability reports. This platform offers clear program instructions, scope, and bounty structures which eliminate guesswork and allow me to focus on discovering real, in-scope vulnerabilities. The explicit bounty structures enable me to prioritize findings based on their impact, saving me time and enhancing my efficiency. Transitioning to Bugcrowd was easy and quick, simplifying the setup process and getting me started almost immediately. This streamlined setup and organized approach make Bugcrowd a highly efficient platform for my work. Additionally, compared to our previous platform, HackerOne, Bugcrowd is more cost-effective, offering substantial financial benefits.
What do you dislike about the product?
Sometimes, I find the triaging process to be slow and inconsistent across different programs. A faster, more uniform triage process would enhance the experience significantly. Additionally, I encountered a terrible experience in my last report submission where I needed to reach out to Bugcrowd's support team for mediation.
What problems is the product solving and how is that benefiting you?
Bugcrowd provides well-structured, legitimate security research opportunities and clear program instructions. It connects me with valued programs, reduces guesswork, and streamlines efforts with detailed bounty structures to prioritize findings, enhancing my efficiency.
Working with Bugcrowd since 2016
What do you like best about the product?
I’ve been on Bugcrowd since 2016, and it’s the only platform I actively hunt on. I’ve tried other platforms over the years, but Bugcrowd still feels the best in terms of usability, transparency, and fairness. The dashboard is simple to navigate, programs are clearly explained, and the triage team has always been professional and helpful. I also like how transparent they are with communication and how easy it is to keep track of submissions and payouts. It just feels like they’ve built it with both researchers and customers in mind.
What do you dislike about the product?
Overall, my experience has been very positive, but sometimes the triage process can take longer than I’d like, especially during busy program periods. Also, there are moments when I wish there was a more direct way to talk to program owners for quick clarifications. Reward processing has been smooth most of the time, but on rare occasions it can be delayed. None of these are dealbreakers, though — just areas where I think Bugcrowd could make an already great platform even better.
What problems is the product solving and how is that benefiting you?
Bugcrowd connects me with a wide range of real-world security programs from companies I’d never have direct access to otherwise. They take care of the legal, payment, and coordination side of things, so I can focus on hunting and improving my skills. The triage team filters reports and handles communication with program owners, which saves me time and avoids misunderstandings. Over the years, this has helped me grow as a researcher, stay motivated, and earn a steady stream of rewards while working on challenging and interesting targets.
Review from 9 years of hunting on Bugcrowd
What do you like best about the product?
I've been hunting on Bugcrowd since a long time. And through all these years, the one quality I observed in the overall proceedings of Bugcrowd is about the sense of cooperation and supportive attitude that their team possess towards the crowd. Now whether it's about a support ticket or triage processes. "Cooperation" from the platform was one of the major reasons that even as a full time bug hunter, I invest a major part of my time bug hunting for the programs available on the "Bugcrowd".
What do you dislike about the product?
I dislike it when, even for a simple reported bug, the triage team places multiple blockers on researchers without fully reading the report or attempting the provided steps.
What problems is the product solving and how is that benefiting you?
Bugcrowd owns the expertise of a crowd which constitutes hundreds of thousands of skilled ethical hackers and cyber security researchers from all across the globe. This massive crowd is capable of uncovering the most unanticipated and never before seen security flaws (or bugs) in organizations critical assets which would otherwise never be possible to determine using the traditional pentests.
Efficient and rewarding platform for responsible disclosure
What do you like best about the product?
Bugcrowd streamlines vulnerability disclosure through a clean interface, actionable scopes, and responsive triage. The platform makes it easy to stay focused on testing thanks to solid integrations, detailed target info, and good researcher communication. I also appreciate the integrity and professionalism of the triage team — they’re security-aware and fairly fast with updates, which keeps momentum going.
What do you dislike about the product?
Some programs still suffer from poor response times or unclear scoping, and rewards can vary drastically between targets with similar risk. I’d like to see better transparency around disclosure timelines and program-side SLAs. Additionally, the analytics or reporting dashboard for researchers could use a revamp for clearer visibility into submission trends and reward patterns.
What problems is the product solving and how is that benefiting you?
Bugcrowd bridges the gap between security researchers and organizations by providing a structured, centralized platform for responsible vulnerability disclosure. It eliminates the friction of cold outreach, legal uncertainty, and unclear expectations by enforcing clear scopes and communication workflows. This lets me focus entirely on testing and reporting, knowing there’s a process in place to ensure findings are reviewed and handled. It also opens access to a wide range of programs that would otherwise be difficult to engage with directly — expanding both learning opportunities and financial incentives.
Amazing platform
What do you like best about the product?
TPM, colleagues, support
Imagine what you want in view of support and you get it here
Imagine what you want in view of support and you get it here
What do you dislike about the product?
Nothing is there which can be called as dislike
What problems is the product solving and how is that benefiting you?
As a product security engineer i don’t get much time to look into todays hack world, bugcrwod provides me with the clients who want applications to be tested and this is what make me feel back in the game
Bugcrowd Helps Me as a Full-Time Hunter
What do you like best about the product?
The triage quality is solid, response times are fair, and the platform doesn’t get in my way when I’m focused on practical impact. I also like that programs are often more receptive to critical exploit chains, not just single-issue bugs.
What do you dislike about the product?
Lack of asset clarity in some programs wastes time. I also wish analytics and submission filtering had more depth to support hunters who operate at scale.
What problems is the product solving and how is that benefiting you?
Bugcrowd bridges the gap between skilled hunters and companies with real attack surfaces. It gives me legal, structured access to targets I’d never get otherwise, and that turns raw exploit chains into paid outcomes.
Review for G2 bugcrowd
What do you like best about the product?
It's it security architecture that I have studied especially the big bounty program
What do you dislike about the product?
They can have more such incentives and add more bounties that can help people and companies grow
What problems is the product solving and how is that benefiting you?
It can help me in catching bugs
showing 1 - 10