A curated list of Public Bug Bounty, Responsible Disclosure, Vulnerability Disclosure Programs sourced from Community & Internet.
-
Updated
May 31, 2023
A curated list of Public Bug Bounty, Responsible Disclosure, Vulnerability Disclosure Programs sourced from Community & Internet.
🍵 Convention for security commit messages
Exploit and report for CVE-2023-23396.
The Disclose.io Status best practice seal.
Content for the CERT Guide to Coordinated Vulnerability Disclosure
Vultron is a protocol for Coordinated Vulnerability Disclosure
A collection of templates for generating vulnerability disclosure policies. (NOTE: As of 2024, these templates are now part of the CERT Guide to Coordinated Vulnerability Disclosure, see link in README.)
A free, open-source, multi-lingual, template-based VDP policy, safe harbor clause, securitytxt, and DNS Security TXT generator.
A standard allowing organizations to nominate security contact points and policies via DNS TXT records.
Vulnerability analysis and proof of concepts
Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
The First Open Source Bug Bounty Platform
Open-source vulnerability disclosure policy templates.
Misc bounty and vulndisc things
Tools, data, and contact lists relevant to The disclose.io Project.
Open-source vulnerability disclosure and bug bounty program database
Add a description, image, and links to the vulnerability-disclosure topic page so that developers can more easily learn about it.
To associate your repository with the vulnerability-disclosure topic, visit your repo's landing page and select "manage topics."