YesWeHack Reviews & Product Details

Keeps my IT Infrastructure secure. Very easy platform to navigate and understand. Been using it for over 4 years now and it's helped in finding lots of vulnerabilities that our Qualys and Nessus scanner doesn't detect. Customer service is superb whether it is in dealing with triagers who will help you verify vulnerability reports to your own dedicated account manager. Review collected by and hosted on G2.com.

Creates alot of work in relation to dealing the vulnerability reports that come in and getting them resolved. This is a good thing but be prepared to devote some time in handling the reported vulnerabilites from start to finish. Review collected by and hosted on G2.com.

We have been using YesWeHack for several years now, and we remain fully satisfied with their services. What really stands out is the quality of their support team, they are always there to guide us. Furthermore, the platform is user-friendly and constantly evolving with new features that make our job easier. Highly recommended for any company looking to strengthen their security posture. This is realy easy to integrate and implement in our process. We use it every day. Review collected by and hosted on G2.com.

The only minor downside is the interface's tracking capabilities. A few specific tracking features are missing to make it perfect, but the team is generally responsive to feedback. Review collected by and hosted on G2.com.

I appreciate YesWeHack because it helps us identify vulnerabilities in our systems that we might not be aware of due to time constraints in performing penetration tests. The platform allows us to rely on hunters to find vulnerabilities in a controlled manner before attackers can exploit them. I find the platform easy to use, which streamlines the process significantly. The support team is incredibly effective, providing assistance and resolving issues promptly. I was impressed with the ability of their hunters, which played a significant role in switching from Bugcrowd to YesWeHack. The initial setup was pretty easy; we started with a pilot on a few websites and expanded gradually, which made the transition smooth and manageable. Review collected by and hosted on G2.com.

It's a great platform, but it's a little bit expensive. Review collected by and hosted on G2.com.

As someone who wears both hats in the cybersecurity ecosystem, serving as a CISO and actively participating as a bug bounty hunter, I can confidently say that YesWeHack represents a paradigm shift in how organizations should approach security testing.

The platform delivers exceptional triage quality and technically accurate assessments that provide both vulnerability details and business context, enabling continuous security testing that far surpasses traditional annual penetration tests.

What makes YesWeHack essential for CISOs is its ability to harness real ethical hackers who think like actual attackers, providing creative attack chains and persistent testing across your entire digital footprint at a cost-effective, results-only pricing model.

The platform's professional communication workflow, integration capabilities, and quality assurance mechanisms transform chaotic vulnerability disclosure into streamlined security enhancement, making it not just another bug bounty platform but a strategic security capability that every organization serious about maintaining robust security posture should implement immediately. Review collected by and hosted on G2.com.

There is nothing I do not like on YesWeHack. Review collected by and hosted on G2.com.

YesWeHack stands out particularly for the technical competence and commitment of its technical and support teams.

As a full-time hunter, I can say that the triaging is very efficient and saves me a considerable amount of time in my hunting/reporting process. The support is always available and responsive in case of any issues.

The platform is generally very pleasant to use both functionally (reporting, vulnerability tracking) and administratively (accounting, payments).

Finally, the bug bounty programs make sense and are generally well-constructed. I appreciate being able to hunt on a very diverse set of scopes, from an architectural/technological perspective (complex applications, wildcards, IP ranges, hardware, etc.), but also from a business perspective (IT, health, insurance, banks, government, SMEs, telecom...) and geographically (all continents). Review collected by and hosted on G2.com.

I really don't see any downside! Review collected by and hosted on G2.com.

As a hunter, YesWeHack is by far one of the best bug bounty platforms I have used.

The interface is smooth, well-designed, and the programs are varied and of high quality, both public and private, with interesting technical challenges.

What I particularly appreciate is the transparency in report management, the responsiveness of the teams, and the respect for the researchers' work. Interactions with triage and clients are generally clear and constructive.

The points system, rankings, live events, and occasional bonuses add real dynamism to the community.

In short, YesWeHack truly values hunters while respecting the ethics of bug bounty. I highly recommend any serious or curious researcher to sign up! Review collected by and hosted on G2.com.

Frankly, not much to complain about. There are always small things that can be improved, but overall the experience is very good. Review collected by and hosted on G2.com.

YesWeHack offers a robust and well-structured bug bounty platform. The user experience is smooth and intuitive, with a clear interface and relevant features that meet the needs of both security researchers and program owners.

The triage teams are responsive and methodical, providing consistent and high-quality handling of submitted reports. Their efficiency helps foster trust and transparency across the platform.

Additionally, YesWeHack has successfully built a solid ecosystem around ethical hacking, bringing together a community of skilled and committed security researchers. The platform positions itself as a reliable and mature player in the field of coordinated vulnerability disclosure. Review collected by and hosted on G2.com.

So far, I haven't encountered any significant drawbacks. The platform delivers on its promises and offers a reliable experience. Of course, there's always room for improvement, but nothing stands out as a real issue at this stage. Review collected by and hosted on G2.com.

Two important aspects

- The CSM team whose support is remarkable. The team is proactive, responsive, and provides very good advice.

- The recruitment of researchers: very good profiles with reports submitted of very good quality. Review collected by and hosted on G2.com.

Live interactions with researchers can be more or less complicated to manage depending on the situations. Review collected by and hosted on G2.com.

The platform offers a diverse range of public and private programs, with clear communication from program managers and quick triage responses. I particularly appreciate the professionalism of the community and the transparency in vulnerability handling, which makes the experience rewarding for both researchers and program owners. Review collected by and hosted on G2.com.

For now, nothing. It gets better every day. Review collected by and hosted on G2.com.

The platform is easy to use, but what particularly impressed me was the exceptional professionalism and remarkable efficiency of each person we were able to interact with. Review collected by and hosted on G2.com.

We estimate that the cost of licenses makes the platform expensive. Review collected by and hosted on G2.com.