Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/projectdiscovery/public-bugbounty-programs
Community curated list of public bug bounty and responsible disclosure programs.
https://github.com/projectdiscovery/public-bugbounty-programs
bugbounty bugbounty-program chaos hacktoberfest reconnaissance
Last synced: 6 days ago
JSON representation
Community curated list of public bug bounty and responsible disclosure programs.
- Host: GitHub
- URL: https://github.com/projectdiscovery/public-bugbounty-programs
- Owner: projectdiscovery
- License: mit
- Created: 2020-05-07T02:28:45.000Z (over 4 years ago)
- Default Branch: main
- Last Pushed: 2024-04-08T07:46:56.000Z (8 months ago)
- Last Synced: 2024-04-08T08:36:21.815Z (8 months ago)
- Topics: bugbounty, bugbounty-program, chaos, hacktoberfest, reconnaissance
- Language: Go
- Homepage: https://chaos.projectdiscovery.io
- Size: 1.57 MB
- Stars: 966
- Watchers: 48
- Forks: 351
- Open Issues: 6
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
- awesome-hacking-lists - projectdiscovery/public-bugbounty-programs - Community curated list of public bug bounty and responsible disclosure programs. (Go)
README
Public BugBounty Programs
Community curated list of public bug bounty and responsible disclosure programs.
The [chaos-bugbounty-list.json](chaos-bugbounty-list.json) file serves as the central management system for the public bug bounty programs displayed on [chaos.projectdiscovery.io](https://chaos.projectdiscovery.io/). We welcome your contributions to this list. If there are specific programs for which you'd like to see reconnaissance data, please submit a pull request.
We are currently accepting submissions in JSON format. Here's an example of the structure we require:
```json
{
"name":"HackerOne",
"url":"https://hackerone.com/security",
"bounty": true,
"swag": true,
"domains":[
"hackerone.com",
"hackerone.net",
"hacker101.com",
"hackerone-ext-content.com"
]
}
```
Your contributions will help us to continually improve and expand the range of public bug bounty programs we feature.
💬 Discussions
-----
For any inquiries, suggestions, or topics you'd like to discuss, we encourage you to initiate a "Discussion" using our [GitHub Discussions](https://github.com/projectdiscovery/public-bugbounty-programs/discussions) platform.
👨💻 Community
-----
We invite you to join our [Discord Community](https://discord.gg/projectdiscovery) for more interactive discussions.
Stay updated with our latest news and activities by following [ProjectDiscovery](https://twitter.com/pdiscoveryio) on Twitter.
For direct communication, feel free to reach us at [[email protected]](mailto:[email protected]).
📋 Guidelines
-----
- Please note that only domain name values are accepted in the `domains` field.
- We do not support wildcard inputs such as `*.tld` or `*.tld.*`.
- The **domains** field should include TLD names associated with the target program, not necessarily based on the scope of the program.
- Subdomains are populated using our dataset **Passive API**
📌 References
-----
- https://github.com/arkadiyt/bounty-targets-data
- https://github.com/disclose/diodb/blob/master/program-list.json
- https://firebounty.com
We greatly appreciate your contributions and your efforts in keeping our community dynamic and engaging. :heart: