HackenProof Docs
  • Welcome
    • HackenProof
      • Services we provide
      • Our resources
    • Integrations
      • Slack
      • Discord
      • Telegram
      • Zapier (Webhook)
        • Zapier -> Lark
        • Zapier -> Linear
        • Zapier -> Jira Service Management
        • Zapier -> PagerDuty
        • Zapier -> Google Chat
        • Zapier -> ClickUp
      • Jira Software
      • GitHub Issue
      • GitLab Issue
      • VDP iFrame
    • FAQ
      • Audit & Bug Bounty (BB)
      • Crowdsourced Audit & BB
      • Penetration testing & BB
    • Emergency
      • Reset 2FA
    • Code of Conduct
    • Referral Program
  • Bug Bounty
    • Bug Bounty process
    • How to start Bug Bounty
    • How to create a VDP
    • Vulnerability classification
      • Web & Mobile
      • Smart contracts
      • Blockchain protocols
    • Reports Basics
      • Points Guide
      • Crafting a well-readable report
  • Dashboard
    • Company dashboard
      • Manage programs
      • Manage reports
      • Share report
      • Labels
      • E2E report encryption
      • Reports decrypting with Mailvelope
      • Users and roles
      • Program/Report Assignee
      • Replenish your balance
      • Integrations
    • Hacker dashboard
      • 👉How to start
      • Submit a report
      • Reports Basics
      • Vulnerability classification
      • 👮‍♂️KYC
      • Сreate a crypto wallet
      • 💸Withdraw bounty
      • Hacker Leaderboard
      • Reset 2FA
      • 🍕HackenProof community
      • Report ID
      • Private Program
      • Contact support
    • Company-Auditor dashboard
      • How to start
      • Add members
      • Submit report
      • Contact support
  • Crowdsourced audit
    • Audit process
    • How to start Audit
    • Supported tech
    • Vulnerability classification
    • Reports Basics
    • Qualified Auditors
    • Judging / Triaging
      • Targets
      • Team
    • Fee & Payments
  • DualDefense Audit
    • What is DualDefence Audit
    • How DualDefence Audit goes
    • DualDefence Audit — researchers' perspective
  • good to know
    • Changelog
    • Branding
    • Vulnerability Disclosure
  • Education
    • Courses
    • Tools
    • Useful sources
Powered by GitBook
On this page
  1. Dashboard
  2. Hacker dashboard

Submit a report

PreviousHow to startNextKYC

Last updated 9 days ago

Please remember, that disclosing any bugs found on HackenProof’s Programs is prohibited without approval. For more details, please see the .

Once you log into your account, navigate to the "Bounties" section to view the active bug bounty programs. Browse through the list to find a program that matches your expertise. Each program page includes detailed information about its scope, rules, and reward structure. Carefully read the program's scope to understand which assets are in-scope and out-of-scope.​ Additionally, familiarize yourself with the program rules and disclosure guidelines to ensure compliance.

To submit a report, please follow these steps:

  • Within the program's page, click the 'Submit report' button.

    • Provide a short description of the vulnerability and the affected asset in the 'Vulnerability title' field.

    • Select the vulnerability target from the drop-down list.

    • Select the type of vulnerability category you have discovered.

    • Choose a severity level or calculate it using the CVSSv3 calculator.

    • Provide detailed information about the vulnerability in the 'Vulnerability details' field.

    • Please provide a clear and logical explanation of your vulnerability in the 'Validation Steps' field.

    • Attach PoC (video, screenshot, logs), which may help to understand the vulnerability more clearly.

  • As soon as you submit a report you can follow the status of it in your dashboard account:

Note: Remember that you can still change your report within the first 5 minutes after submitting it.

Fill out the report form with accurate and detailed information (check out our guide on how to ), including:

craft a well-readable report
Terms of Service