HackenProof Docs
  • Welcome
    • HackenProof
      • Services we provide
      • Our resources
    • Integrations
      • Slack
      • Discord
      • Telegram
      • Zapier (Webhook)
        • Zapier -> Lark
        • Zapier -> Linear
        • Zapier -> Jira Service Management
        • Zapier -> PagerDuty
        • Zapier -> Google Chat
        • Zapier -> ClickUp
      • Jira Software
      • GitHub Issue
      • GitLab Issue
      • VDP iFrame
    • FAQ
      • Audit & Bug Bounty (BB)
      • Crowdsourced Audit & BB
      • Penetration testing & BB
    • Emergency
      • Reset 2FA
    • Code of Conduct
    • Referral Program
  • Bug Bounty
    • Bug Bounty process
    • How to start Bug Bounty
    • How to create a VDP
    • Vulnerability classification
      • Web & Mobile
        • Out-of-Scope Bugs
      • Smart contracts
      • Blockchain protocols
    • Reports Basics
      • Points Guide
      • Crafting a well-readable report
  • Dashboard
    • Company dashboard
      • Manage programs
      • Manage reports
      • Share report
      • Labels
      • E2E report encryption
      • Reports decrypting with Mailvelope
      • Users and roles
      • Program/Report Assignee
      • Replenish your balance
      • Integrations
    • Hacker dashboard
      • ๐Ÿ‘‰How to start
      • Submit a report
      • Reports Basics
      • Vulnerability classification
      • ๐Ÿ‘ฎโ€โ™‚๏ธKYC
      • ะกreate a crypto wallet
      • ๐Ÿ’ธWithdraw bounty
      • Hacker Leaderboard
      • Reset 2FA
      • ๐Ÿ•HackenProof community
      • Report ID
      • Private Program
      • Contact support
    • Company-Auditor dashboard
      • How to start
      • Add members
      • Submit report
      • Contact support
  • Crowdsourced audit
    • Audit process
    • How to start Audit
    • Supported tech
    • Vulnerability classification
    • Reports Basics
    • Qualified Auditors
    • Judging / Triaging
      • Targets
      • Team
    • Fee & Payments
  • DualDefense Audit
    • What is DualDefence Audit
    • How DualDefence Audit goes
    • DualDefence Audit โ€” researchers' perspective
  • good to know
    • Changelog
    • Branding
    • Vulnerability Disclosure
  • Education
    • Courses
    • Tools
    • Useful sources
Powered by GitBook
On this page
  1. Welcome
  2. FAQ

Audit & Bug Bounty (BB)

Bug Bounty program - also known as a vulnerability rewards program (VRP), offers rewards to individuals (security researchers, hackers) for uncovering and reporting software bugs. The public Bug Bounty program has unlimited time and budget and everyone on the platform can participate. Bug bounty can be done for both closed and open-source code.

Audit - is a service that will be done by a specific company auditor for a limited time and money and by limited specialists. Auditing can be done for both closed and open-source code.

Option
Bug Bounty
Audit by company

Limited time

usually no

yes

Limited budget

usually no

yes

Everyone can submit vulnaribility report

yes (and no for private programs)

no

Program owner (client) can pay in native token, stable coins, fiat

yes

no (usually stable coins and fiat)

Only specific company can participate

no

yes

Can be done for both closed and open-source code

yes

yes

PreviousFAQNextCrowdsourced Audit & BB

Last updated 10 months ago