An Australian company making bug bounty programs accessible, efficient, and effective for everyone.
Bugbop was created to make bug bounty programs accessible to organizations of all sizes. We believe that every company, from startups to enterprises, deserves access to the collective intelligence of the ethical hacking community.
I'm a developer and tech founder with a passion for both economics and security. This intersection makes bug bounties a perfect fit for me - they represent a fascinating economic model where market incentives drive security improvements.
Over 7 years, I managed Gleam's bug bounty program and paid out ~$45,000 in bounties. As a 50% owner of the bootstrapped company, every bounty payment came directly from my own pocket. I was lucky to get grandfathered into HackerOne's old pricing. I think bug bounties are incredibly valuable but even I wouldn't pay the $10,000s they charge new clients today.
The idea for Bugbop came from a conversation with a friend about how to get the old pricing in HackerOne. In jest, I suggested that he acquire a dead company with the old pricing and repurpose it. This is not something I actually endorse (and I suspect it would violate their terms of use 😅) but it highlighted a problem with the pricing of existing platforms.
While traditional platforms serve their purpose, they often come with high "Enterprise" pricing, complex requirements, and barriers that prevent smaller organizations from participating. Having experienced the economics of both growth-stage companies and bug bounties firsthand, I recognized an opportunity to create a more accessible, transparent, and cost-effective solution that puts the focus back on finding and fixing vulnerabilities. I am proud to present our fully transparent Pricing page right from our header.
Have questions about Bugbop or want to learn more about how we can help secure your applications? Contact us - we'd love to hear from you.