BugBounty

BugBounty is a program for rewarding the discovery of vulnerabilities in information systems and resources.

Learn more

What is BugBounty?

BugBounty is a program used by a company to engage independent researchers (called “white hats”, “bug hunters” or “researchers” in the industry) to identify vulnerabilities in information systems and resources for a monetary reward.

The company publicly announces the reward scope and level, after which the volunteers can register on the platform and take part in the Bug Bounty

Approach to resolving vulnerability in government and business information systems

Use cash flow underwriting to accurately predict credit default risk, evaluate missing and low-income consumers.

Everything you don’t see

Researchers can discover what your specialists may have overlooked or missed in ensuring the information security of your systems and resources

Conduct research

You can create a private project and invite researchers to solve your problem

Get a report

By participating in the program, you will be able to receive a vulnerability report with elimination recommendations confirmed by TSARKA analysts

Start your research now

To participate in the program, you should act ethically and strictly adhere to the established rules. Be sure to read all the rules before you start discovering vulnerabilities.

Learn more

Reliable and safe

Our infrastructure is built to ensure privacy, security and protection of our clients, partners and researchers

Compliance

Compliance is a top priority and we guarantee that our solutions, systems and processes comply with applicable laws and regulations.

All is confidential

For consumer safety and compliance with customer requirements, we use AWS-managed disk-level encryption and do not collect, sell or store platform member data

Independent audit

Our processes and systems are regularly audited for compliance with industry standards by independent third parties.

Feedback

Made Qaznet a little safer

Hello everyone! My name is Stanislav (aka @clevergod), vice-captain of the Codeby team of multiple winners of The Standoff (PHD). I wanted to thank the creators of this site https://bugbounty.kz, as it helped me personally to hand over most of the identified serious and even critical vulnerabilities in the open spaces of Qaznet without contacting or begging for closure from the owners themselves or their administrators, which in turn made Qaznet a little bit safer. Although I didn’t earn a penny of money, I have moral satisfaction from the presence of such a platform, which is very actively developing and gaining momentum and can attract young professionals to legalize the search for vulnerabilities in the treasury and bring obvious benefits to the Motherland!
Фотография автора отзыва

Stanislav (aka @clevergod)

vice-captain of the Codeby team

Something new for Qaznet

Hey ! My name is Danila, I've been into bug bounty for the last 4 years - https://hackerone.com/danila In the vastness of the Internet in Kazakhstan, after finding a vulnerability, it was not so often possible to send a report, wait for a fix and receive a reward, risking more likely to receive threats - through this platform, you can send a vulnerability and count on a reward and fix a serious problem - something new for Qaznet.
Фотография автора отзыва

Danila Chalykin

Bughunter

Made Qaznet a little safer

Hello everyone! My name is Stanislav (aka @clevergod), vice-captain of the Codeby team of multiple winners of The Standoff (PHD). I wanted to thank the creators of this site https://bugbounty.kz, as it helped me personally to hand over most of the identified serious and even critical vulnerabilities in the open spaces of Qaznet without contacting or begging for closure from the owners themselves or their administrators, which in turn made Qaznet a little bit safer. Although I didn’t earn a penny of money, I have moral satisfaction from the presence of such a platform, which is very actively developing and gaining momentum and can attract young professionals to legalize the search for vulnerabilities in the treasury and bring obvious benefits to the Motherland!
Фотография автора отзыва

Stanislav (aka @clevergod)

vice-captain of the Codeby team

Something new for Qaznet

Hey ! My name is Danila, I've been into bug bounty for the last 4 years - https://hackerone.com/danila In the vastness of the Internet in Kazakhstan, after finding a vulnerability, it was not so often possible to send a report, wait for a fix and receive a reward, risking more likely to receive threats - through this platform, you can send a vulnerability and count on a reward and fix a serious problem - something new for Qaznet.
Фотография автора отзыва

Danila Chalykin

Bughunter

Made Qaznet a little safer

Hello everyone! My name is Stanislav (aka @clevergod), vice-captain of the Codeby team of multiple winners of The Standoff (PHD). I wanted to thank the creators of this site https://bugbounty.kz, as it helped me personally to hand over most of the identified serious and even critical vulnerabilities in the open spaces of Qaznet without contacting or begging for closure from the owners themselves or their administrators, which in turn made Qaznet a little bit safer. Although I didn’t earn a penny of money, I have moral satisfaction from the presence of such a platform, which is very actively developing and gaining momentum and can attract young professionals to legalize the search for vulnerabilities in the treasury and bring obvious benefits to the Motherland!
Фотография автора отзыва

Stanislav (aka @clevergod)

vice-captain of the Codeby team

Something new for Qaznet

Hey ! My name is Danila, I've been into bug bounty for the last 4 years - https://hackerone.com/danila In the vastness of the Internet in Kazakhstan, after finding a vulnerability, it was not so often possible to send a report, wait for a fix and receive a reward, risking more likely to receive threats - through this platform, you can send a vulnerability and count on a reward and fix a serious problem - something new for Qaznet.
Фотография автора отзыва

Danila Chalykin

Bughunter

Why us?

Our company tries to create a bridge between large companies and IT community. Collectively, we will get a more profitable and effective mechanism for ensuring a high-level security of information systems and resources.

700
Active researchers
Researchers find vulnerabilities in information systems and resources every day
500
Vulnerability closure rate
We try to report the discovered vulnerabilities to the companies participating in the program as soon as possible
100
Vulnerabilities daily
On average, we get and process more than 100 vulnerabilities per day