BugBounty
BugBounty is a program for rewarding the discovery of vulnerabilities in information systems and resources.
Learn more
What is BugBounty?
BugBounty is a program used by a company to engage independent researchers (called “white hats”, “bug hunters” or “researchers” in the industry) to identify vulnerabilities in information systems and resources for a monetary reward.
The company publicly announces the reward scope and level, after which the volunteers can register on the platform and take part in the program.
Approach to resolving vulnerability in government and business information systems
Use cash flow underwriting to accurately predict credit default risk, evaluate missing and low-income consumers.
Researchers can discover what your specialists may have overlooked or missed in ensuring the information security of your systems and resources.
You can create a private project and invite researchers to solve your problem.
By participating in the program, you will be able to receive a vulnerability report with elimination recommendations confirmed by TSARKA analysts.
Start your research now
To participate in the program, you should act ethically and strictly adhere to the established rules. Be sure to read all the rules before you start discovering vulnerabilities.
Learn moreReliable and safe
Our infrastructure is built to ensure privacy, security and protection of our clients, partners and researchers.
Compliance
Compliance is a top priority and we guarantee that our solutions, systems and processes comply with applicable laws and regulations.
All is confidential
For consumer safety and compliance with customer requirements, we use AWS-managed disk-level encryption and do not collect, sell or store platform member data.
Independent audit
Our processes and systems are regularly audited for compliance with industry standards by independent third parties.
Feedback
Made Qaznet a little safer
Hello everyone! My name is Stanislav (aka @clevergod), vice-captain of the Codeby team of multiple winners of The Standoff (PHD). I wanted to thank the creators of this site https://bugbounty.kz, as it helped me personally to hand over most of the identified serious and even critical vulnerabilities in the open spaces of Qaznet without contacting or begging for closure from the owners themselves or their administrators, which in turn made Qaznet a little bit safer. Although I didn’t earn a penny of money, I have moral satisfaction from the presence of such a platform, which is very actively developing and gaining momentum and can attract young professionals to legalize the search for vulnerabilities in the treasury and bring obvious benefits to the Motherland!
Stanislav (aka @clevergod)
vice-captain of the Codeby team
Something new for Qaznet
Hey ! My name is Danila, I've been into bug bounty for the last 4 years - https://hackerone.com/danila In the vastness of the Internet in Kazakhstan, after finding a vulnerability, it was not so often possible to send a report, wait for a fix and receive a reward, risking more likely to receive threats - through this platform, you can send a vulnerability and count on a reward and fix a serious problem - something new for Qaznet.
Danila Chalykin
Bughunter
Finding vulnerabilities and getting money is now even more enjoyable!
Hello! I'm Nurlan (Nullrun), a bug bounty enthusiast who has been researching vulnerabilities for several years now :). I can’t help but express my deep gratitude for the unique opportunity to submit vulnerabilities in the treasury and contribute to the security of the network. This not only allows me to participate in the collection of vulnerability identification, but also actively contributes to the development of the bug hunter community. The process of submitting vulnerabilities becomes fun and productive thanks to the features that appear on the platform. The emergence of various companies and the public sector on the tumar.one platform is very encouraging; submitting vulnerabilities and receiving money is now even more pleasant! I cannot help but note the efficiency and professionalism of the team. Triage of reports is carried out within strictly established time frames, which significantly facilitates interaction and helps maintain a high level of efficiency. I look forward to continuing fruitful cooperation and new opportunities for joint development. Thank you for the dynamic and positive development of the platform!
Nullrun
TOP-1 BugHunter tumar.one 2023
Made Qaznet a little safer
Hello everyone! My name is Stanislav (aka @clevergod), vice-captain of the Codeby team of multiple winners of The Standoff (PHD). I wanted to thank the creators of this site https://bugbounty.kz, as it helped me personally to hand over most of the identified serious and even critical vulnerabilities in the open spaces of Qaznet without contacting or begging for closure from the owners themselves or their administrators, which in turn made Qaznet a little bit safer. Although I didn’t earn a penny of money, I have moral satisfaction from the presence of such a platform, which is very actively developing and gaining momentum and can attract young professionals to legalize the search for vulnerabilities in the treasury and bring obvious benefits to the Motherland!
Stanislav (aka @clevergod)
vice-captain of the Codeby team
Something new for Qaznet
Hey ! My name is Danila, I've been into bug bounty for the last 4 years - https://hackerone.com/danila In the vastness of the Internet in Kazakhstan, after finding a vulnerability, it was not so often possible to send a report, wait for a fix and receive a reward, risking more likely to receive threats - through this platform, you can send a vulnerability and count on a reward and fix a serious problem - something new for Qaznet.
Danila Chalykin
Bughunter
Finding vulnerabilities and getting money is now even more enjoyable!
Hello! I'm Nurlan (Nullrun), a bug bounty enthusiast who has been researching vulnerabilities for several years now :). I can’t help but express my deep gratitude for the unique opportunity to submit vulnerabilities in the treasury and contribute to the security of the network. This not only allows me to participate in the collection of vulnerability identification, but also actively contributes to the development of the bug hunter community. The process of submitting vulnerabilities becomes fun and productive thanks to the features that appear on the platform. The emergence of various companies and the public sector on the tumar.one platform is very encouraging; submitting vulnerabilities and receiving money is now even more pleasant! I cannot help but note the efficiency and professionalism of the team. Triage of reports is carried out within strictly established time frames, which significantly facilitates interaction and helps maintain a high level of efficiency. I look forward to continuing fruitful cooperation and new opportunities for joint development. Thank you for the dynamic and positive development of the platform!
Nullrun
TOP-1 BugHunter tumar.one 2023
Made Qaznet a little safer
Hello everyone! My name is Stanislav (aka @clevergod), vice-captain of the Codeby team of multiple winners of The Standoff (PHD). I wanted to thank the creators of this site https://bugbounty.kz, as it helped me personally to hand over most of the identified serious and even critical vulnerabilities in the open spaces of Qaznet without contacting or begging for closure from the owners themselves or their administrators, which in turn made Qaznet a little bit safer. Although I didn’t earn a penny of money, I have moral satisfaction from the presence of such a platform, which is very actively developing and gaining momentum and can attract young professionals to legalize the search for vulnerabilities in the treasury and bring obvious benefits to the Motherland!
Stanislav (aka @clevergod)
vice-captain of the Codeby team
Why us?
Our company tries to create a bridge between large companies and IT community. Collectively, we will get a more profitable and effective mechanism for ensuring a high-level security of information systems and resources.
