Bugcrowd Reviews & Product Details

Attack validation and prioritization. Customer support is excellent. The platform is easy to use and provides a number of features that make it easy to integrate with Slack, JIRA, and other platforms. Review collected by and hosted on G2.com.

The workflow, especially the names of each stage, was not intuitive and required some coaching. Review collected by and hosted on G2.com.

We use BugCrowd to run our bug bounty program. The researchers invited to our program have filed reports about a variety of security issues, and it's clear that some of them have really dug into our site's functionality, not just running automated scanners and skimming the surface. We've also been perfectly happy with our CSM and account manager, and BugCrowd's triagers are helpful in rejecting invalid reports. Review collected by and hosted on G2.com.

Not much negative to say. We do have a recurring issue with not automatically receiving invoices for some reason. Our account manager's always helpful and passes it along quickly when we reach out, but it's a little inconvenient (and odd) that we have to do that. Review collected by and hosted on G2.com.

Highly professional triage team. It was easy to integrate with our internal systems. Bugcrowd interface is easy to use. Review collected by and hosted on G2.com.

Nothing to say for now. No issues or concerns Review collected by and hosted on G2.com.

BugCrowd provides an easy to use interface which enables businesses to get their pen-test scope infront of security researchers in-line with thier current appeite/posture.

Wherther that be initially running with a smaller private program with a limited number of researchers, before expaning to larger public scopes.

Support is fantastic with the team always at the end of a slack message, mail or phone call.

Integration and imeplmentation are simple, allowing the customer to shape the pen-test scope. Review collected by and hosted on G2.com.

There is nothing for me to say here. Please keep up the great work BugCrowd! Review collected by and hosted on G2.com.

The Bugcrowd team and community is fantastic. I highly recommend using Bugcrowd for bug bounty, vulnerability disclosure and pen testing programs. Review collected by and hosted on G2.com.

I have no notes. I love the service and the system that's built around it. Review collected by and hosted on G2.com.

The triage response and also the platform itself. Review collected by and hosted on G2.com.

I have seen no downsides about using bugcrowd. Review collected by and hosted on G2.com.

The researcher community is great. The triagers are also great to work with! Bugcrowds UI is very user friendly as well. Review collected by and hosted on G2.com.

Haven't run into any issues with Bugcrowd, so far our experiences with Bugcrowd have been good and we don't have any complaints at this time. Review collected by and hosted on G2.com.

Learning about the findings and how to recreate them. The team does a great job laying out the steps it takes to recreate what the researchers find if we have any difficulty. Our account reps are also great to work with. Very knowledgable, quick to respond, great guidance. Review collected by and hosted on G2.com.

The web UI could use some work. I wish there was more space to look at the actual findings. A lot of the UI space when looking at the findings "To review" is being taken up by the Dashboard black bar on top (which is mostly blank space). If they moved the Summary, Submissions, Researchers,...etc. bar to the black bar on top, it would give a little more room to analyze the Steps to Recreate and any images attached. Thats the part I need the most. Everything above that can be condensed or made into a navigation bar that only shows when you hover your mouse to a side or implement a drop down bar option or something like that. Review collected by and hosted on G2.com.

Their support, and timely answsers. We like the number of features in Bugcrowd's platform and options for the researchers. Review collected by and hosted on G2.com.

Sometimes, the time for Bugcrowd to validate findings can take some time. Review collected by and hosted on G2.com.

there are some to list:

Community Engagement: It offers a supportive community that encourages collaboration and knowledge sharing in the security area.

Diverse Opportunities: The platform provides a wide range of bug bounty projects, making suitable for various skill levels, allowing for continuous growth and challenges.

Professional Support: The dedicated team at Bugcrowd provides timely and helpful support, it's the best part for me as I had always my questions solved in really fast time and with excellent communication.

Learning Resources and Researchers Incentivation: There are constant development of valuable educational resources, such as tutorials, webinars with researchers, and forums, for skill development. Review collected by and hosted on G2.com.

Limited Filtering in the platform UI: The filter system is good but does not provide all the filtering options necessary for a propper search on all account's programs.

Varying Bounty Times for critical and high issues: While Bugcrowd generally offers professional support regarding this, there are some programs with very limited communication and I think support could incentivize them to award p1/p2 valid triaged issues or at least ping them weekly to receive a response back. There are even cases where the vulnerability is fixed and there's no response from the team in 02 months, which sometimes can be frustating. Review collected by and hosted on G2.com.