Home / Companies / Bugcrowd / Blog / Post Details
Content Deep Dive

Why bug bounty programs have always been about the evolution of penetration testing

Blog post from Bugcrowd

Post Details
Company
Date Published
Author
Bugcrowd
Word Count
974
Company Posts That Month
12
Language
English
Hacker News Points
-
Post removed?
No
Summary

Bugcrowd's founder and CTO Casey Ellis discusses the evolution of bug bounty programs and their connection to penetration testing, highlighting the company's strategy of using crowdsourcing to improve pen testing through economics and resourcing models. He emphasizes that pen testing is a logical application of crowdsourcing and that the goal is to align expectations between researchers and companies when it comes to vulnerability disclosure. Ellis also stresses the importance of education on both sides, particularly for the researcher community, and announces Bugcrowd's partnership with Secure Code Warrior to provide training and developer education in secure coding practices. The partnership aims to shift left in the development process to help engineers understand how to code securely, reducing the introduction of bugs into production systems.

Trends Found in this Post

No tracked trend matches for this post yet.

Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.